Use-After-Free

2019-05-0206:45:07

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.007 Low

EPSS

Percentile

79.8%

JSON

Firefox, Firefox ESR and Thunderbird are vulnerable to use-after-free vulnerability. A remote unauthenticated attacker could exploit the vulnerable Image Observer component to cause a system crash when reading an image observer during frame reconstruction resulting in denial of service conditions.

CPENameOperatorVersion
firefoxeq38.6.1__1.el6_7
firefoxeq3.6.17__1.el6_0
firefoxeq31.5.0__1.el6_6
firefoxeq10.0.8__1.el6_3
firefoxeq10.0.5__1.el6_2
firefoxeq24.4.0__1.el6_5
firefoxeq38.7.0__1.el6_7
firefoxeq3.6.14__4.el6_0
firefoxeq17.0.10__1.el6_4
firefoxeq38.1.1__1.el6_7

Name	Operator	Version
firefox	eq	38.6.1__1.el6_7
firefox	eq	3.6.17__1.el6_0
firefox	eq	31.5.0__1.el6_6
firefox	eq	10.0.8__1.el6_3
firefox	eq	10.0.5__1.el6_2
firefox	eq	24.4.0__1.el6_5
firefox	eq	38.7.0__1.el6_7
firefox	eq	3.6.14__4.el6_0
firefox	eq	17.0.10__1.el6_4
firefox	eq	38.1.1__1.el6_7