Lucene search
+L

Use-After-Free

🗓️ 16 May 2019 03:07:52Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 16 Views

Thunderbird, Firefox ESR and Firefox are vulnerable to use-after-free vulnerability. A remote unauthenticated attacker could cause a system hang by exploiting the vulnerable function `focus`

Related
Detection
Refs
Vulners
Node
OR
mozillafirefoxMatch45.4.0_1.el6_8
mozillafirefoxMatch3.6.17_1.el6_0
mozillafirefoxMatch3.6.20_2.el6_1
mozillafirefoxMatch45.5.1_1.el6_8
mozillafirefoxMatch52.5.1_1.el6_9
mozillafirefoxMatch52.6.0_1.el6_9
mozillafirefoxMatch10.0.5_1.el6_2
mozillafirefoxMatch17.0.6_1.el6_4
mozillafirefoxMatch31.1.0_5.el6_5
mozillafirefoxMatch10.0.7_1.el6_3
mozillafirefoxMatch17.0.8_1.el6_4
mozillafirefoxMatch24.7.0_1.el6_5
mozillafirefoxMatch17.0.10_1.el6_4
mozillafirefoxMatch3.6.24_3.el6_1
mozillafirefoxMatch10.0.1_1.el6_2
mozillafirefoxMatch45.7.0_2.el6_8
mozillafirefoxMatch52.7.2_1.el6_9
mozillafirefoxMatch10.0.6_1.el6_3
mozillafirefoxMatch3.6.14_4.el6_0
mozillafirefoxMatch3.6.12_1.el6_0
mozillafirefoxMatch24.3.0_2.el6_5
mozillafirefoxMatch3.6.9_2.el6
mozillafirefoxMatch45.8.0_2.el6_8
mozillafirefoxMatch38.7.0_1.el6_7
mozillafirefoxMatch45.7.0_1.el6_8
mozillafirefoxMatch3.6.13_2.el6_0
mozillafirefoxMatch52.8.0_1.el6.centos
mozillafirefoxMatch24.2.0_6.el6_5
mozillafirefoxMatch3.6.15_2.el6_0
mozillafirefoxMatch52.4.0_1.el6_9
mozillafirefoxMatch38.3.0_2.el6_7
mozillafirefoxMatch3.6.23_2.el6_1
mozillafirefoxMatch45.2.0_1.el6_8
mozillafirefoxMatch31.4.0_1.el6_6
mozillafirefoxMatch3.6.18_1.el6_1
mozillafirefoxMatch17.0.3_1.el6_3
mozillafirefoxMatch45.0.1_1.el6
mozillafirefoxMatch38.1.1_1.el6_7
mozillafirefoxMatch45.1.1_1.el6_7
mozillafirefoxMatch52.8.0_1.el6_9
mozillafirefoxMatch45.5.0_1.el6_8
mozillafirefoxMatch38.5.0_2.el6_7
mozillafirefoxMatch10.0.4_1.el6_2
mozillafirefoxMatch24.2.0_1.el6_5
mozillafirefoxMatch45.1.0_1.el6_7
mozillafirefoxMatch31.2.0_3.el6_6
mozillafirefoxMatch38.0.1_1.el6_6
mozillafirefoxMatch3.6.26_1.el6_2
mozillafirefoxMatch17.0.7_1.el6_4
mozillafirefoxMatch31.5.3_1.el6_6
mozillafirefoxMatch52.5.0_1.el6_9
mozillafirefoxMatch10.0.10_1.el6_3
mozillafirefoxMatch24.4.0_1.el6_5
mozillafirefoxMatch52.7.3_1.el6_9
mozillafirefoxMatch3.6.22_1.el6_1
mozillafirefoxMatch52.3.0_3.el6_9
mozillafirefoxMatch10.0.11_1.el6_3
mozillafirefoxMatch17.0.5_1.el6_4
mozillafirefoxMatch52.2.0_1.el6_9
mozillafirefoxMatch10.0.12_1.el6_3
mozillafirefoxMatch38.6.0_1.el6_7
mozillafirefoxMatch38.4.0_1.el6_7
mozillafirefoxMatch38.6.0_2.el6_7
mozillafirefoxMatch52.1.0_2.el6_9
mozillafirefoxMatch45.6.0_1.el6_8
mozillafirefoxMatch17.0.9_1.el6_4
mozillafirefoxMatch10.0.8_1.el6_3
mozillafirefoxMatch24.8.0_1.el6_5
mozillafirefoxMatch24.5.0_1.el6_5
mozillafirefoxMatch38.1.0_1.el6_6
mozillafirefoxMatch31.3.0_3.el6_6
mozillafirefoxMatch38.6.1_1.el6_7
mozillafirefoxMatch52.7.0_1.el6_9
mozillafirefoxMatch24.6.0_1.el6_5
mozillafirefoxMatch38.2.0_4.el6_7
mozillafirefoxMatch45.3.0_1.el6_8
mozillafirefoxMatch10.0.3_1.el6_2
mozillafirefoxMatch38.0_4.el6_6
mozillafirefoxMatch45.1.1_1.el6_8
mozillafirefoxMatch31.6.0_2.el6_6
mozillafirefoxMatch31.5.0_1.el6_6
mozillafirefoxMatch38.2.1_1.el6_7
mozillafirefoxMatch52.7.3_1.el7.centos
mozillafirefoxMatch52.8.0_1.el7.centos
mozillafirefoxMatch52.7.0_1.el7.centos
mozillathunderbirdMatch52.2.0_1.el6_9
mozillathunderbirdMatch3.1.3_1.el6
mozillathunderbirdMatch10.0.1_3.el6_2
mozillathunderbirdMatch31.7.0_1.el6_6
mozillathunderbirdMatch45.4.0_1.el6_8
mozillathunderbirdMatch38.6.0_1.el6_7
mozillathunderbirdMatch10.0.6_1.el6_3
mozillathunderbirdMatch24.8.0_1.el6_5
mozillathunderbirdMatch10.0.8_1.el6_3
mozillathunderbirdMatch3.1.15_1.el6_1
mozillathunderbirdMatch10.0.4_1.el6_2
mozillathunderbirdMatch24.6.0_1.el6_5
mozillathunderbirdMatch52.5.0_1.el6_9
mozillathunderbirdMatch10.0.8_2.el6_3
mozillathunderbirdMatch31.5.0_1.el6_6
mozillathunderbirdMatch3.1.12_2.el6_1
mozillathunderbirdMatch45.5.0_1.el6_8
mozillathunderbirdMatch3.1.11_2.el6_1
mozillathunderbirdMatch52.5.2_1.el6_9
mozillathunderbirdMatch17.0.3_2.el6_4
mozillathunderbirdMatch10.0.5_2.el6_2
mozillathunderbirdMatch31.4.0_1.el6_6
mozillathunderbirdMatch52.8.0_2.el6.centos
mozillathunderbirdMatch24.5.0_1.el6_5
mozillathunderbirdMatch45.8.0_1.el6_8
mozillathunderbirdMatch45.2_1.el6_8
mozillathunderbirdMatch3.1.16_2.el6_1
mozillathunderbirdMatch45.3.0_1.el6_8
mozillathunderbirdMatch3.1.18_2.el6_2
mozillathunderbirdMatch24.3.0_2.el6_5
mozillathunderbirdMatch10.0.10_1.el6_3
mozillathunderbirdMatch3.1.12_1.el6_1
mozillathunderbirdMatch17.0.8_5.el6_4
mozillathunderbirdMatch45.6.0_1.el6_8
mozillathunderbirdMatch3.1.7_3.el6_0
mozillathunderbirdMatch31.2.0_3.el6_6
mozillathunderbirdMatch45.5.1_1.el6_8
mozillathunderbirdMatch17.0.7_1.el6_4
mozillathunderbirdMatch3.1.10_1.el6_0
mozillathunderbirdMatch3.1.9_3.el6_0
mozillathunderbirdMatch52.4.0_2.el6_9
mozillathunderbirdMatch52.8.0_1.el7.centos
mozillathunderbirdMatch45.7.0_1.el6_8
mozillathunderbirdMatch38.8.0_2.el6_8
mozillathunderbirdMatch38.4.0_1.el6_7
mozillathunderbirdMatch3.1.8_4.el6_0
mozillathunderbirdMatch38.3.0_1.el6_7
mozillathunderbirdMatch24.7.0_1.el6_5
mozillathunderbirdMatch38.7.0_1.el6_7
mozillathunderbirdMatch38.5.0_1.el6_7
mozillathunderbirdMatch17.0.6_2.el6_4
mozillathunderbirdMatch31.8.0_1.el6_6
mozillathunderbirdMatch17.0.5_1.el6_4
mozillathunderbirdMatch10.0.11_1.el6_3
mozillathunderbirdMatch24.2.0_1.el6_5
mozillathunderbirdMatch31.3.0_1.el6_6
mozillathunderbirdMatch17.0.3_1.el6_3
mozillathunderbirdMatch10.0.3_1.el6_2
mozillathunderbirdMatch3.1.18_1.el6_2
mozillathunderbirdMatch52.1.0_1.el6_9
mozillathunderbirdMatch3.1.6_1.el6_0
mozillathunderbirdMatch17.0.9_1.el6_4
mozillathunderbirdMatch52.3.0_1.el6_9
mozillathunderbirdMatch52.6.0_1.el6_9
mozillathunderbirdMatch52.8.0_2.el6_9
mozillathunderbirdMatch52.7.0_1.el6_9
mozillathunderbirdMatch17.0.10_1.el6_4
mozillathunderbirdMatch38.2.0_4.el6_7
mozillathunderbirdMatch24.4.0_1.el6_5
mozillathunderbirdMatch10.0.12_3.el6_3
mozillathunderbirdMatch3.1.14_1.el6_1
mozillathunderbirdMatch31.6.0_1.el6_6
mozillathunderbirdMatch10.0.7_1.el6_3

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 Apr 2022 18:11Current
9.3High risk
Vulners AI Score9.3
CVSS 26.8
CVSS 38.8
EPSS0.0311
16