Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-0766 Use After Free Memory Corruption Vulnerability

Mozilla Firefox, Thunderbird, and SeaMonkey are prone to a memory-corruption vulnerability.

A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Note: This issue was previously covered in BID 57185 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-01 through -20 Multiple Vulnerabilities), but has been given its own record to better document it.

This issue is fixed in:

Firefox 18.0
Firefox ESR 10.0.12
Firefox ESR 17.0.1
Thunderbird 17.0.2
Thunderbird ESR 10.0.12
Thunderbird ESR 17.0.1
SeaMonkey 2.15


Privacy Statement
Copyright 2010, SecurityFocus