In this recipe, we will exploit a use-after-free vulnerability present in nsSMILTimeContainer::NotifyTimeChange() across numerous versions of Mozilla Firefox on Microsoft Windows.
Exploiting a Windows 10 machine
Getting ready
So, before we begin we need to download Mozilla Firefox 41.0 from https://ftp.mozilla.org/pub/firefox/releases/41.0/win32/en-US/Firefox%20Setup%2041.0.exe and install it on our Windows 10 target machine.
How to do it...
As always, good reconnaissance makes all the difference, so we first need to gather information about the browser the victim is using.
- To help...