製品・ソフトウェアに関する情報

JVN脆弱性詳細

Mozilla Firefox の CanonicalizeXPCOMParticipant 関数における任意のコードを実行される脆弱性

Title	Mozilla Firefox の CanonicalizeXPCOMParticipant 関数における任意のコードを実行される脆弱性
Summary	Mozilla Firefox の CanonicalizeXPCOMParticipant 関数には、解放済みメモリの使用 (Use-after-free) により、任意のコードを実行される脆弱性が存在します。補足情報 : CWE による脆弱性タイプは、CWE-416: Use-after-free (解放済みメモリの使用) と識別されています。 http://cwe.mitre.org/data/definitions/416.html
Possible impacts	第三者により、共有ワーカーの XMLHttpRequest オブジェクトのアタッチメントに関する問題によって、任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 2, 2015, midnight
Registration Date	July 9, 2015, 12:31 p.m.
Last Update	Nov. 6, 2015, 3:43 p.m.

CVSS2.0 : 危険
Score	10
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected System

Mozilla Foundation

Mozilla Firefox 39.0 未満

Mozilla Firefox ESR 31.8 未満の 31.x

Mozilla Firefox ESR 38.1 未満の 38.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2015-2722	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2722
National Vulnerability Database (NVD)
2	CVE-2015-2722	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2722

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-Other	https://www.ipa.go.jp/security/vuln/CWE.html#CWEOther

ベンダー情報

No	Name	URL
Mozilla Foundation Security Advisory
1	MFSA2015-65	http://www.mozilla.org/security/announce/2015/mfsa2015-65.html
Mozilla Foundation セキュリティアドバイザリ
2	MFSA2015-65	http://www.mozilla-japan.org/security/announce/2015/mfsa2015-65.html
Oracle Technology Network
3	Oracle Solaris Third Party Bulletin - October 2015	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Change Log

No	Changed Details	Date of change
0	[2015年07月09日] 掲載 [2015年11月06日] ベンダ情報：オラクル (Oracle Solaris Third Party Bulletin - October 2015) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2015-2722

Summary	Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbitrary code via vectors involving attachment of an XMLHttpRequest object to a shared worker.
Publication Date	July 6, 2015, 11 a.m.
Registration Date	Jan. 26, 2021, 2:48 p.m.
Last Update	Nov. 21, 2024, 11:27 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:oracle:solaris:11.3:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox_esr:31.1:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.7.0:::::::*
cpe:2.3:a:mozilla:firefox:31.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.5:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.6.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.3:::::::*
cpe:2.3:a:mozilla:firefox:38.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.2:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.4:::::::*
cpe:2.3:a:mozilla:firefox:31.1.0:::::::*
cpe:2.3:a:mozilla:firefox:31.5.3:::::::*
cpe:2.3:a:mozilla:firefox:31.3.0:::::::*
cpe:2.3:a:mozilla:firefox:31.1.1:::::::*
cpe:2.3:a:mozilla:firefox:31.5.2:::::::*
cpe:2.3:a:mozilla:firefox:31.5.1:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox::::::::			38.1.0

Configuration4	or higher	or less	more than	less than
cpe:2.3:o:novell:suse_linux_enterprise_server:12.0:::::::*
cpe:2.3:o:novell:suse_linux_enterprise_server:11:sp4::::::
cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0:::::::*
cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0:::::::*

Related information, measures and tools

No	URL	タグ
1	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html
2	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html
3	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
4	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html
5	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html	Third Party Advisory
6	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html	Third Party Advisory
7	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html	Third Party Advisory
8	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html	Third Party Advisory
9	http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html
10	http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html
11	http://rhn.redhat.com/errata/RHSA-2015-1207.html
12	http://rhn.redhat.com/errata/RHSA-2015-1207.html
13	http://www.mozilla.org/security/announce/2015/mfsa2015-65.html	Vendor Advisory
14	http://www.mozilla.org/security/announce/2015/mfsa2015-65.html	Vendor Advisory
15	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	Third Party Advisory
16	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	Third Party Advisory
17	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html	Third Party Advisory
18	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html	Third Party Advisory
19	http://www.securityfocus.com/bid/75541
20	http://www.securityfocus.com/bid/75541
21	http://www.securitytracker.com/id/1032783
22	http://www.securitytracker.com/id/1032783
23	http://www.securitytracker.com/id/1032784
24	http://www.securitytracker.com/id/1032784
25	http://www.ubuntu.com/usn/USN-2656-1
26	http://www.ubuntu.com/usn/USN-2656-1
27	http://www.ubuntu.com/usn/USN-2656-2
28	http://www.ubuntu.com/usn/USN-2656-2
29	https://bugzilla.mozilla.org/show_bug.cgi?id=1166924	Issue Tracking Vendor Advisory
30	https://bugzilla.mozilla.org/show_bug.cgi?id=1166924	Issue Tracking Vendor Advisory
31	https://security.gentoo.org/glsa/201512-10
32	https://security.gentoo.org/glsa/201512-10

Common Vulnerabilities List

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox_esr:31.1:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.7.0:::::::*
cpe:2.3:a:mozilla:firefox:31.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.5:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.6.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.3:::::::*
cpe:2.3:a:mozilla:firefox:38.0:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.2:::::::*
cpe:2.3:a:mozilla:firefox_esr:31.4:::::::*
cpe:2.3:a:mozilla:firefox:31.1.0:::::::*
cpe:2.3:a:mozilla:firefox:31.5.3:::::::*
cpe:2.3:a:mozilla:firefox:31.3.0:::::::*
cpe:2.3:a:mozilla:firefox:31.1.1:::::::*
cpe:2.3:a:mozilla:firefox:31.5.2:::::::*
cpe:2.3:a:mozilla:firefox:31.5.1:::::::*