Executive Risk Summary
"A compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process, potentially leading to a sandbox escape. This vulnerability affects Firefox and Thunderbird versions prior to 136 and 128.8."
Operational Audit Arsenal
Target Type Software
Target Asset Firefox and Thunderbird
Standard Path Windows
PowerShell
# 🛠️ Senior Engineer Universal Audit
# Target: Firefox and Thunderbird (Software)
$Target = "Firefox and Thunderbird"
$SearchPaths = @("$env:windir\System32", "$env:ProgramFiles", "${env:ProgramFiles(x86)}")
Get-ChildItem -Path $SearchPaths -Filter $Target -Recurse -ErrorAction SilentlyContinue |
Select-Object FullName, @{Name="Version";Expression={$_.VersionInfo.ProductVersion}}Patch Impact Forecast
Reboot Required
Required
Service Disruption
Low to Moderate
Internal Work Notes
Apply the latest security updates for Firefox and Thunderbird to mitigate the vulnerability.
Intelligence Sources
Official Advisory https://bugzilla.mozilla.org/show_bug.cgi?id=1902309
Official Advisory https://www.mozilla.org/security/advisories/mfsa2025-14/
Official Advisory https://www.mozilla.org/security/advisories/mfsa2025-15/
Official Advisory https://www.mozilla.org/security/advisories/mfsa2025-16/
Official Advisory https://www.mozilla.org/security/advisories/mfsa2025-17/
Official Advisory https://www.mozilla.org/security/advisories/mfsa2025-18/
Scope of Impact
Firefox Thunderbird
Original NVD Description
"On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape. This vulnerability affects Firefox < 136, Firefox ESR < 115.21, Firefox ESR < 128.8, Thunderbird < 136, and Thunderbird < 128.8."
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.