Endpoint Vulnerability

Service Worker Manager out-of-bounds read in Service Worker Manager

Description

Security researcher Looben Yang reported a mechanism where the Clients API in Service Workers can be used to trigger an out-of-bounds read in ServiceWorkerManager. This results in a potentially exploitable crash.

Affected Products

Firefox

References

CVE-2016-1959,