ID:6312 - Exploit for Buffer overflow - CVE-2017-5375
Published: June 17, 2021
Vulnerability identifier: #VU33562
Vulnerability risk: High
CVE-ID: CVE-2017-5375
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
Link to public exploit:
Vulnerability description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
Remediation
Install update from vendor's website.