Mozilla Firefox/Thunderbird/SeaMonkey CVE-2013-5600 Remote Memory Corruption Vulnerability

Mozilla Firefox, SeaMonkey, and Thunderbird are prone to a remote memory-corruption vulnerability due to an use-after-free error.

An attacker can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Note: This issue was previously discussed in BID 63405 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-93 through -102 Multiple Vulnerabilities), but has been moved to its own record to better document it.

These issues are fixed in:

Firefox 25.0
Firefox ESR 24.1
Firefox ESR 17.0.10
Thunderbird 24.1
Thunderbird ESR 17.0.10
SeaMonkey 2.22


Privacy Statement
Copyright 2010, SecurityFocus