CVE-2017-5445

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
A vulnerability has been found in Firefox < 53, while parsing application/http-index-format format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected.
Group Package Affected Fixed Severity Status Ticket
AVG-249 firefox 52.0.2-1 53.0-1 Critical Fixed
Date Advisory Group Package Severity Description
21 Apr 2017 ASA-201704-6 AVG-249 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5445
https://bugzilla.mozilla.org/show_bug.cgi?id=1344467