Full title: Firefox onreadystatechange Event DocumentViewerImpl Use After Free 
Category: remote exploits
Platform: windows
This Metasploit module exploits a vulnerability found on Firefox 17.0.6, specifically an use after free of a DocumentViewerImpl object, triggered via an specially crafted web page using onreadystatechange events and the window.stop() API, as exploited in the wild on 2013 August to target Tor Browser users.

# 0day.today @ http://0day.today/