Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-5599
Description:Use-after-free vulnerability in the nsIPresShell::GetPresContext function in the PresShell (aka presentation shell) implementation in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via vectors involving a CANVAS element, a mozTextStyle attribute, and an onresize event.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-5599
Debian Security Information: DSA-2788 (Google Search)
http://www.debian.org/security/2013/dsa-2788
Debian Security Information: DSA-2797 (Google Search)
http://www.debian.org/security/2013/dsa-2797
https://security.gentoo.org/glsa/201504-01
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19315
RedHat Security Advisories: RHSA-2013:1476
http://rhn.redhat.com/errata/RHSA-2013-1476.html
RedHat Security Advisories: RHSA-2013:1480
http://rhn.redhat.com/errata/RHSA-2013-1480.html
SuSE Security Announcement: SUSE-SU-2013:1678 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00014.html
SuSE Security Announcement: openSUSE-SU-2013:1633 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00005.html
SuSE Security Announcement: openSUSE-SU-2013:1634 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00006.html




© 1998-2021 E-Soft Inc. All rights reserved.