Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2011-0057

Source

Mozilla Foundation Security Advisory 2011-06

Use-after-free error using Web Workers

Announced

March 1, 2011

Reporter

Daniel Kozlowski

Impact

Critical

Products

Firefox, SeaMonkey

Fixed in

Firefox 3.5.17
Firefox 3.6.14
SeaMonkey 2.0.12

Description

Daniel Kozlowski reported that a JavaScript Worker could be used to keep a reference to an object that could be freed during garbage collection. Subsequent calls through this deleted reference could cause attacker-controlled memory to be executed on a victim's computer.

References

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Use-after-free error using Web Workers

Use-after-free error using Web Workers

Description

References

Vulmon Search

About

Products

Connect