CVE-2014-1550: Mozilla: Use-after-free in Web Audio due to incorrect control message ordering (MFSA 2014-58)

Severity: Critical

CVSS Score: 10

Use-after-free vulnerability in the MediaInputPort class in Mozilla Firefox before 31.0 and Thunderbird before 31.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by leveraging incorrect Web Audio control-message ordering.