Use-after-free vulnerability in the mozilla::plugins::child::_geturlnotify function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2013-05-16 04:45
Updated : 2017-09-18 18:36
NVD link : CVE-2013-1679
Mitre link : CVE-2013-1679
JSON object : View
CWE
CWE-399
Resource Management Errors
Products Affected
mozilla
- firefox
- firefox_esr
- thunderbird_esr
- thunderbird