| Revision Date: | 2014-10-06 | Version: | 30 |
| Title: | Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding. |
| Description: | Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2012-0452
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
|
| Definition Synopsis |
| Determine if the version of Mozilla Firefox is equal to 10.0 Mozilla Firefox Mainline release is installed
AND Mozilla Firefox Mainline version is equal to 10.0
OR Determine if the version of Mozilla Thunderbird is equal to 10.0
Mozilla Thunderbird Mainline release is installed
AND Determine if the version of Mozilla Thunderbird is equal to 10.0
OR Determine if the version of Mozilla Seamonkey is equal to 2.7
Mozilla Seamonkey is installed
AND Determine if the version of Mozilla Seamonkey is equal to 2.7
|