9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.039 Low
EPSS
Percentile
92.1%
Use-after-free vulnerability in the ListenerManager implementation in
Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x
before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before
10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allows remote
attackers to execute arbitrary code via vectors involving the triggering of
garbage collection after memory allocation for listener objects.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | firefox | < 18.0+build1-0ubuntu0.10.04.3 | UNKNOWN |
ubuntu | 11.10 | noarch | firefox | < 18.0+build1-0ubuntu0.11.10.3 | UNKNOWN |
ubuntu | 12.04 | noarch | firefox | < 18.0+build1-0ubuntu0.12.04.3 | UNKNOWN |
ubuntu | 12.10 | noarch | firefox | < 18.0+build1-0ubuntu0.12.10.3 | UNKNOWN |
ubuntu | 13.04 | noarch | firefox | < 19.0~b1+build2-0ubuntu1 | UNKNOWN |
ubuntu | 13.10 | noarch | firefox | < 19.0~b1+build2-0ubuntu1 | UNKNOWN |
ubuntu | 10.04 | noarch | thunderbird | < 17.0.2+build1-0ubuntu0.10.04.1 | UNKNOWN |
ubuntu | 11.10 | noarch | thunderbird | < 17.0.2+build1-0ubuntu0.11.10.1 | UNKNOWN |
ubuntu | 12.04 | noarch | thunderbird | < 17.0.2+build1-0ubuntu0.12.04.1 | UNKNOWN |
ubuntu | 12.10 | noarch | thunderbird | < 17.0.2+build1-0ubuntu0.12.10.1 | UNKNOWN |