---

CVE-2017-7756 - log back

CVE-2017-7756 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Remote
Type	+ Arbitrary code execution
Description	+ A use after-free and use-after-scope vulnerability has been found in Firefox < 54.0 and Thunderbird < 52.2, when logging errors from headers for XML HTTP Requests (XHR).
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2017-15/#CVE-2017-7756 + https://bugzilla.mozilla.org/show_bug.cgi?id=1366595
Notes