This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Windows host contains a web browser that is affected by
a remote code execution vulnerability.
The version of Mozilla Firefox installed on the remote Windows host is
prior to 53.0.2. It is, therefore, affected by a use-after-free error
in libANGLE/renderer/d3d/d3d11/Buffer11.cpp within the ANGLE graphics
library (libGLES) when handling Buffer11 API calls. An
unauthenticated, remote attacker can exploit this, by convincing a
user to visit a specially crafted web page, to dereference already
freed memory, resulting in a crash or potentially the execution of
See also :
Upgrade to Mozilla Firefox version 53.0.2 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.5
Public Exploit Available : false