Dominique Hazaël-Massieux

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 45.0 Mozilla Firefox ESR versions prior to 38.7 **Description** The issue is related to a use-after-free vulnerability in the `mozilla::DataChannelConnection::Close` function, which can be exploited by remote attackers to execute arbitrary code. This is achieved by mishandling WebRTC data-channel connections. The vulnerability allows an attacker to leverage the incorrect usage of WebRTC, potentially leading to the execution of arbitrary code. **Recommendations** For Mozilla Firefox versions prior to 45.0, update to version 45.0 or later. For Mozilla Firefox ESR versions prior to 38.7, update to version 38.7 or later.