Use-after-free vulnerability in the nsHtml5TreeOperation function in xul.dll in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code by adding a second root element to an HTML5 document during parsing.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2014-12-11T11:00:00
Updated: 2024-08-06T09:42:36.623Z
Reserved: 2014-01-16T00:00:00
Link: CVE-2014-1592
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-12-11T11:59:06.210
Modified: 2024-11-21T02:04:40.850
Link: CVE-2014-1592
Redhat