Lucene search

Use After Free

🗓️ 02 May 2019 06:00:10Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 22 Views

Thunderbird, Firefox ESR, and Firefox vulnerable to use-after-free vulnerability leading to denial of service via `Focus Handler` componen

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 127
Cvelist	CVE-2017-5434	11 Jun 201821:00	–	cvelist
Prion	Design/Logic Flaw	11 Jun 201821:29	–	prion
OSV	CVE-2017-5434	11 Jun 201821:29	–	osv
OSV	MGASA-2017-0118 Updated firefox packages fix security vulnerability	27 Apr 201722:21	–	osv
OSV	MGASA-2017-0139 Updated thunderbird packages fix security vulnerability	10 May 201720:47	–	osv
OSV	DLA-906-1 firefox-esr - security update	21 Apr 201700:00	–	osv
OSV	DSA-3831-1 firefox-esr - security update	20 Apr 201700:00	–	osv
OSV	RHSA-2017:1104 Red Hat Security Advisory: firefox security update	16 Sep 202400:15	–	osv
OSV	SUSE-SU-2017:1248-1 Security update for MozillaFirefox, mozilla-nss, mozilla-nspr, java-1_8_0-openjdk	11 May 201714:24	–	osv
OSV	SUSE-SU-2017:1175-1 Security update for MozillaFirefox, mozilla-nss, mozilla-nspr	4 May 201710:11	–	osv

Vulners

Node

mozilla firefoxMatch31.5.3_1.el6_6

mozilla firefoxMatch31.1.0_5.el6_5

mozilla firefoxMatch24.8.0_1.el6_5

mozilla firefoxMatch45.1.1_1.el6_7

mozilla firefoxMatch10.0.11_1.el6_3

mozilla firefoxMatch38.2.0_4.el6_7

mozilla firefoxMatch38.6.1_1.el6_7

mozilla firefoxMatch24.2.0_6.el6_5

mozilla firefoxMatch10.0.3_1.el6_2

mozilla firefoxMatch45.1.0_1.el6_7

mozilla firefoxMatch24.4.0_1.el6_5

mozilla firefoxMatch3.6.26_1.el6_2

mozilla firefoxMatch45.0.1_1.el6

mozilla firefoxMatch38.6.0_2.el6_7

mozilla firefoxMatch17.0.8_1.el6_4

mozilla firefoxMatch3.6.15_2.el6_0

mozilla firefoxMatch10.0.6_1.el6_3

mozilla firefoxMatch31.2.0_3.el6_6

mozilla firefoxMatch17.0.6_1.el6_4

mozilla firefoxMatch38.7.0_1.el6_7

mozilla firefoxMatch10.0.5_1.el6_2

mozilla firefoxMatch45.5.0_1.el6_8

mozilla firefoxMatch45.8.0_2.el6_8

mozilla firefoxMatch24.7.0_1.el6_5

mozilla firefoxMatch24.2.0_1.el6_5

mozilla firefoxMatch3.6.18_1.el6_1

mozilla firefoxMatch3.6.23_2.el6_1

mozilla firefoxMatch31.3.0_3.el6_6

mozilla firefoxMatch3.6.22_1.el6_1

mozilla firefoxMatch3.6.14_4.el6_0

mozilla firefoxMatch38.0_4.el6_6

mozilla firefoxMatch3.6.9_2.el6

mozilla firefoxMatch17.0.5_1.el6_4

mozilla firefoxMatch31.4.0_1.el6_6

mozilla firefoxMatch38.1.1_1.el6_7

mozilla firefoxMatch24.5.0_1.el6_5

mozilla firefoxMatch24.3.0_2.el6_5

mozilla firefoxMatch31.6.0_2.el6_6

mozilla firefoxMatch45.7.0_2.el6_8

mozilla firefoxMatch3.6.24_3.el6_1

mozilla firefoxMatch10.0.7_1.el6_3

mozilla firefoxMatch3.6.13_2.el6_0

mozilla firefoxMatch45.6.0_1.el6_8

mozilla firefoxMatch31.5.0_1.el6_6

mozilla firefoxMatch17.0.10_1.el6_4

mozilla firefoxMatch3.6.17_1.el6_0

mozilla firefoxMatch38.6.0_1.el6_7

mozilla firefoxMatch10.0.8_1.el6_3

mozilla firefoxMatch38.2.1_1.el6_7

mozilla firefoxMatch38.0.1_1.el6_6

mozilla firefoxMatch45.1.1_1.el6_8

mozilla firefoxMatch10.0.4_1.el6_2

mozilla firefoxMatch38.3.0_2.el6_7

mozilla firefoxMatch24.6.0_1.el6_5

mozilla firefoxMatch45.2.0_1.el6_8

mozilla firefoxMatch38.1.0_1.el6_6

mozilla firefoxMatch38.4.0_1.el6_7

mozilla firefoxMatch10.0.10_1.el6_3

mozilla firefoxMatch38.5.0_2.el6_7

mozilla firefoxMatch17.0.3_1.el6_3

mozilla firefoxMatch10.0.1_1.el6_2

mozilla firefoxMatch45.4.0_1.el6_8

mozilla firefoxMatch17.0.7_1.el6_4

mozilla firefoxMatch45.3.0_1.el6_8

mozilla firefoxMatch3.6.20_2.el6_1

mozilla firefoxMatch17.0.9_1.el6_4

mozilla firefoxMatch3.6.12_1.el6_0

mozilla firefoxMatch10.0.12_1.el6_3

mozilla firefoxMatch45.7.0_1.el6_8

mozilla firefoxMatch45.5.1_1.el6_8

mozilla thunderbirdMatch31.7.0_1.el6_6

mozilla thunderbirdMatch31.2.0_3.el6_6

mozilla thunderbirdMatch10.0.11_1.el6_3

mozilla thunderbirdMatch17.0.5_1.el6_4

mozilla thunderbirdMatch31.6.0_1.el6_6

mozilla thunderbirdMatch10.0.12_3.el6_3

mozilla thunderbirdMatch10.0.4_1.el6_2

mozilla thunderbirdMatch38.6.0_1.el6_7

mozilla thunderbirdMatch10.0.1_3.el6_2

mozilla thunderbirdMatch24.7.0_1.el6_5

mozilla thunderbirdMatch17.0.7_1.el6_4

mozilla thunderbirdMatch38.8.0_2.el6_8

mozilla thunderbirdMatch3.1.8_4.el6_0

mozilla thunderbirdMatch45.5.0_1.el6_8

mozilla thunderbirdMatch24.8.0_1.el6_5

mozilla thunderbirdMatch31.4.0_1.el6_6

mozilla thunderbirdMatch45.2_1.el6_8

mozilla thunderbirdMatch45.8.0_1.el6_8

mozilla thunderbirdMatch17.0.8_5.el6_4

mozilla thunderbirdMatch3.1.16_2.el6_1

mozilla thunderbirdMatch10.0.10_1.el6_3

mozilla thunderbirdMatch3.1.18_2.el6_2

mozilla thunderbirdMatch3.1.3_1.el6

mozilla thunderbirdMatch10.0.5_2.el6_2

mozilla thunderbirdMatch10.0.7_1.el6_3

mozilla thunderbirdMatch24.4.0_1.el6_5

mozilla thunderbirdMatch38.2.0_4.el6_7

mozilla thunderbirdMatch38.3.0_1.el6_7

mozilla thunderbirdMatch3.1.7_3.el6_0

mozilla thunderbirdMatch3.1.6_1.el6_0

mozilla thunderbirdMatch3.1.9_3.el6_0

mozilla thunderbirdMatch3.1.14_1.el6_1

mozilla thunderbirdMatch38.5.0_1.el6_7

mozilla thunderbirdMatch10.0.8_2.el6_3

mozilla thunderbirdMatch45.7.0_1.el6_8

mozilla thunderbirdMatch31.5.0_1.el6_6

mozilla thunderbirdMatch45.6.0_1.el6_8

mozilla thunderbirdMatch45.5.1_1.el6_8

mozilla thunderbirdMatch17.0.10_1.el6_4

mozilla thunderbirdMatch17.0.6_2.el6_4

mozilla thunderbirdMatch31.8.0_1.el6_6

mozilla thunderbirdMatch31.3.0_1.el6_6

mozilla thunderbirdMatch24.5.0_1.el6_5

mozilla thunderbirdMatch3.1.10_1.el6_0

mozilla thunderbirdMatch17.0.3_1.el6_3

mozilla thunderbirdMatch3.1.12_2.el6_1

mozilla thunderbirdMatch24.3.0_2.el6_5

mozilla thunderbirdMatch17.0.3_2.el6_4

mozilla thunderbirdMatch38.4.0_1.el6_7

mozilla thunderbirdMatch3.1.18_1.el6_2

mozilla thunderbirdMatch3.1.15_1.el6_1

mozilla thunderbirdMatch3.1.11_2.el6_1

mozilla thunderbirdMatch24.6.0_1.el6_5

mozilla thunderbirdMatch3.1.12_1.el6_1

mozilla thunderbirdMatch45.3.0_1.el6_8

mozilla thunderbirdMatch45.4.0_1.el6_8

mozilla thunderbirdMatch38.7.0_1.el6_7

mozilla thunderbirdMatch17.0.9_1.el6_4

mozilla thunderbirdMatch10.0.6_1.el6_3

mozilla thunderbirdMatch24.2.0_1.el6_5

mozilla thunderbirdMatch10.0.8_1.el6_3

mozilla thunderbirdMatch10.0.3_1.el6_2

Source	Link
securitytracker	www.securitytracker.com/id/1038320
securityfocus	www.securityfocus.com/bid/97940
access	www.access.redhat.com/security/updates/classification/
access	www.access.redhat.com/security/cve/CVE-2016-10197
access	www.access.redhat.com/security/cve/CVE-2016-10195
access	www.access.redhat.com/security/cve/CVE-2016-10196
mozilla	www.mozilla.org/en-US/security/advisories/mfsa2017-08
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/errata/RHSA-2017:1104
debian	www.debian.org/security/2017/dsa-3831

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 May 2019 06:10Current

9High risk

Vulners AI Score9

CVSS27.5

CVSS39.8

EPSS0.03688