9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.102 Low
EPSS
Percentile
95.0%
Security researcher regenrecht reported, via TippingPoint’s Zero Day Initiative, a use-after-free during text layout when interacting with the setting of text direction. This results in a use-after-free which can lead to arbitrary code execution.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 32 | |
firefox esr | lt | 24.8 | |
firefox esr | lt | 31.1 | |
seamonkey | lt | 2.29 | |
thunderbird | lt | 24.8 | |
thunderbird | lt | 31.1 |