Lucene search
Mozilla FoundationMFSA2015-51HistoryMay 12, 2015 - 12:00 a.m.
Use-after-free during text processing with vertical text enabled — Mozilla
2015-05-1200:00:00
Mozilla Foundation
www.mozilla.org
14
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.022 Low
EPSS
Percentile
89.2%
Security researcher Scott Bell used the Address Sanitizer tool to discover a use-after-free error during the processing of text when vertical text is enabled. This leads to a potentially exploitable crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | lt | 38 | |
| firefox esr | lt | 31.7 | |
| firefox os | lt | 2.2 | |
| seamonkey | lt | 2.35 | |
| thunderbird | lt | 31.7 | |
| thunderbird | lt | 38.0.1 |
Related
prion
prion
Memory corruption
2015-05-14 10:59:00
cve
cve
CVE-2015-2713
2015-05-14 10:59:00
ubuntucve
ubuntucve
CVE-2015-2713
2015-05-13 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2015-05-19 00:00:00
firefox security update
2015-05-13 00:00:00
openvas
openvas
CentOS Update for thunderbird CESA-2015:1012 centos7
2015-06-09 00:00:00
CentOS Update for thunderbird CESA-2015:1012 centos6
2015-06-09 00:00:00
CentOS Update for thunderbird CESA-2015:1012 centos5
2015-06-12 00:00:00
nessus
nessus
Mozilla Thunderbird < 31.7 Multiple Vulnerabilities
2015-09-16 00:00:00
Mozilla Thunderbird < 31.7 Multiple Vulnerabilities (Mac OS X)
2015-05-14 00:00:00
Firefox ESR 31.x < 31.7 Multiple Vulnerabilities (Mac OS X)
2015-05-13 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2015-05-18 00:00:00
Firefox vulnerabilities
2015-05-13 00:00:00
redhat
redhat
(RHSA-2015:1012) Important: thunderbird security update
2015-05-18 00:00:00
(RHSA-2015:0988) Critical: firefox security update
2015-05-12 00:00:00
centos
centos
thunderbird security update
2015-05-18 14:07:12
firefox security update
2015-05-13 00:01:13
archlinux
archlinux
thunderbird: multiple issues
2015-05-18 00:00:00
firefox: multiple issues
2015-05-13 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:39:09
Arbitrary Code Execution
2019-05-02 05:39:09
Arbitrary Code Execution
2019-05-02 05:39:10
debian
debian
[SECURITY] [DSA 3264-1] icedove security update
2015-05-19 21:12:26
[SECURITY] [DSA 3260-1] iceweasel security update
2015-05-13 17:22:46
osv
osv
icedove - security update
2015-05-19 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2015-06-01 15:05:51
Security update for MozillaFirefox (important)
2015-05-28 12:05:02
Update to Firefox 31.7.0esr (important)
2015-05-18 13:04:51
mageia
mageia
Updated Firefox, Thunderbird & sqlite3 packages fix security vulnerabilities
2015-05-18 22:08:05
Updated iceape packages fix security vulnerabilities
2015-09-08 10:20:40
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2015-05-13 00:00:00
kaspersky
kaspersky
KLA10584 Multiple vulnerabilities in Mozilla products
2015-05-12 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-05-12 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.022 Low
EPSS
Percentile
89.2%
Related for MFSA2015-51