Published: 18/06/2012 Updated: 19/06/2012

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Use-after-free vulnerability in the nsHTMLSelectElement function in nsHTMLSelectElement.cpp in Mozilla Firefox 4.x up to and including 8.0, Thunderbird 5.0 up to and including 8.0, and SeaMonkey prior to 2.6 allows remote malicious users to execute arbitrary code via vectors involving removal of the parent node of an element.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 4.0
mozilla firefox 4.0.1
mozilla firefox 5.0
mozilla firefox 5.0.1
mozilla firefox 6.0
mozilla firefox 6.0.1
mozilla firefox 6.0.2
mozilla seamonkey 1.1.16
mozilla seamonkey 1.1.1
mozilla seamonkey 2.0.6
mozilla seamonkey 2.0.5
mozilla seamonkey 1.0
mozilla seamonkey 1.1.4
mozilla seamonkey 1.1.5
mozilla seamonkey 1.1.19
mozilla seamonkey 1.1.18
mozilla seamonkey 1.1.8
mozilla seamonkey 2.0.8
mozilla thunderbird 6.0
mozilla thunderbird 6.0.1
mozilla thunderbird 6.0.2
mozilla thunderbird 7.0
mozilla seamonkey 1.1.11
mozilla seamonkey 1.1.12
mozilla seamonkey 1.1
mozilla seamonkey 2.0.12
mozilla seamonkey 2.0
mozilla seamonkey 2.0.4
mozilla seamonkey 2.1
mozilla seamonkey 2.0.9
mozilla seamonkey 1.1.13
mozilla seamonkey 1.0.1
mozilla seamonkey 1.5.0.8
mozilla seamonkey 1.5.0.9
mozilla seamonkey 1.0.9
mozilla seamonkey 1.0.8
mozilla seamonkey 1.0.2
mozilla seamonkey
mozilla firefox 7.0.1
mozilla thunderbird 5.0
mozilla thunderbird 7.0.1
mozilla seamonkey 1.1.17
mozilla seamonkey 2.0.2
mozilla seamonkey 2.0.1
mozilla seamonkey 2.0.14
mozilla seamonkey 1.1.10
mozilla seamonkey 2.0.3
mozilla seamonkey 2.0a1
mozilla seamonkey 1.1.7
mozilla seamonkey 2.3.3
mozilla seamonkey 1.1.9
mozilla seamonkey 1.0.6
mozilla seamonkey 1.1.3
mozilla seamonkey 1.0.5
mozilla seamonkey 1.0.3
mozilla firefox 7.0
mozilla firefox 8.0
mozilla thunderbird 8.0
mozilla seamonkey 2.0.11
mozilla seamonkey 1.1.14
mozilla seamonkey 1.1.15
mozilla seamonkey 2.0.13
mozilla seamonkey 1.0.99
mozilla seamonkey 2.0.7
mozilla seamonkey 2.0a1pre
mozilla seamonkey 1.1.6
mozilla seamonkey 2.0.10
mozilla seamonkey 1.0.7
mozilla seamonkey 1.5.0.10
mozilla seamonkey 1.1.2
mozilla seamonkey 1.0.4

Mozilla Foundation Security Advisory 2012-41 Use-after-free in nsHTMLSelectElement Announced June 18, 2012 Reporter regenrecht Impact Critical Products Firefox, SeaMonkey, Thunderbird Fixed in ...

CWE-399 https://bugzilla.mozilla.org/show_bug.cgi?id=739343 http://www.mozilla.org/security/announce/2012/mfsa2012-41.html https://nvd.nist.gov https://www.mozilla.org/en-US/security/advisories/mfsa2012-41/

CVE-2011-3671

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect