Computer Security
[EN] securityvulns.ru no-pyccku


Mozilla Firefox / Thunderbird / Seamonkey use-after-free vulnerability
updated since 10.03.2013
Published:24.03.2013
Source:
SecurityVulns ID:12925
Type:client
Threat Level:
5/10
Description:HTML editor use-after-free
Affected:MOZILLA : Thunderbird 17.0
 MOZILLA : Firefox ESR 17.0
 MOZILLA : Firefox 19.0
 MOZILLA : SeaMonkey 2.16
CVE:CVE-2013-0787 (Use-after-free vulnerability in the nsEditor::IsPreformatted function in editor/libeditor/base/nsEditor.cpp in Mozilla Firefox before 19.0.2, Firefox ESR 17.x before 17.0.4, Thunderbird before 17.0.4, Thunderbird ESR 17.x before 17.0.4, and SeaMonkey before 2.16.1 allows remote attackers to execute arbitrary code via vectors involving an execCommand call.)
Original documentdocumentVUPEN Security Research, VUPEN Security Research - Mozilla Firefox "nsHTMLEditRules" Use-After-Free (MFSA-2013-29 / CVE-2013-0787) (24.03.2013)
Files:Mozilla Foundation Security Advisory 2013-29

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod