The txXPathNodeUtils::getBaseURI function in the XSLT processor in Mozilla Firefox prior to 25.0, Firefox ESR 17.x prior to 17.0.10 and 24.x prior to 24.1, Thunderbird prior to 24.1, Thunderbird ESR 17.x prior to 17.0.10, and SeaMonkey prior to 2.22 does not properly initialize data, which allows remote malicious users to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via crafted documents.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mozilla thunderbird esr 17.0.3 |
||
mozilla thunderbird esr 17.0.2 |
||
mozilla thunderbird esr 17.0.5 |
||
mozilla thunderbird esr 17.0.4 |
||
mozilla thunderbird esr 17.0.7 |
||
mozilla thunderbird esr 17.0.6 |
||
mozilla thunderbird esr 17.0.9 |
||
mozilla thunderbird esr 17.0.1 |
||
mozilla thunderbird esr 17.0 |
||
mozilla thunderbird esr 17.0.8 |
||
mozilla seamonkey |
||
mozilla seamonkey 2.14 |
||
mozilla seamonkey 2.13.1 |
||
mozilla seamonkey 2.13 |
||
mozilla seamonkey 2.12.1 |
||
mozilla seamonkey 2.12 |
||
mozilla seamonkey 2.11 |
||
mozilla seamonkey 2.10 |
||
mozilla seamonkey 2.1 |
||
mozilla seamonkey 2.0.4 |
||
mozilla seamonkey 2.0.3 |
||
mozilla seamonkey 2.0.1 |
||
mozilla seamonkey 2.0 |
||
mozilla seamonkey 2.20 |
||
mozilla seamonkey 2.18 |
||
mozilla seamonkey 2.17 |
||
mozilla seamonkey 2.16.2 |
||
mozilla seamonkey 2.15.2 |
||
mozilla seamonkey 2.15.1 |
||
mozilla seamonkey 2.15 |
||
mozilla seamonkey 2.21 |
||
mozilla seamonkey 2.22 |
||
mozilla seamonkey 2.13.2 |
||
mozilla seamonkey 2.10.1 |
||
mozilla seamonkey 2.0.6 |
||
mozilla seamonkey 2.0.5 |
||
mozilla seamonkey 2.0.11 |
||
mozilla seamonkey 2.0.10 |
||
mozilla seamonkey 2.19 |
||
mozilla seamonkey 2.16 |
||
mozilla seamonkey 2.0.8 |
||
mozilla seamonkey 2.0.7 |
||
mozilla seamonkey 2.0.13 |
||
mozilla seamonkey 2.0.12 |
||
mozilla seamonkey 2.0.9 |
||
mozilla seamonkey 2.0.2 |
||
mozilla seamonkey 2.0.14 |
||
mozilla seamonkey 2.17.1 |
||
mozilla seamonkey 2.16.1 |
||
mozilla firefox esr 17.0.6 |
||
mozilla firefox esr 17.0.5 |
||
mozilla firefox esr 17.0.8 |
||
mozilla firefox esr 17.0.7 |
||
mozilla firefox esr 24.0.2 |
||
mozilla firefox esr 17.0.9 |
||
mozilla firefox esr 17.0.1 |
||
mozilla firefox esr 17.0 |
||
mozilla firefox esr 24.0 |
||
mozilla firefox esr 24.0.1 |
||
mozilla firefox esr 17.0.4 |
||
mozilla firefox esr 17.0.3 |
||
mozilla firefox esr 17.0.2 |
||
mozilla thunderbird |
||
mozilla thunderbird 17.0 |
||
mozilla thunderbird 17.0.7 |
||
mozilla thunderbird 17.0.8 |
||
mozilla thunderbird 24.0 |
||
mozilla thunderbird 17.0.5 |
||
mozilla thunderbird 17.0.6 |
||
mozilla thunderbird 17.0.3 |
||
mozilla thunderbird 17.0.4 |
||
mozilla thunderbird 17.0.1 |
||
mozilla thunderbird 17.0.2 |
||
mozilla firefox 22.0 |
||
mozilla firefox 21.0 |
||
mozilla firefox 20.0.1 |
||
mozilla firefox 19.0.1 |
||
mozilla firefox 19.0 |
||
mozilla firefox |
||
mozilla firefox 19.0.2 |
||
mozilla firefox 23.0 |
||
mozilla firefox 20.0 |
||
mozilla firefox 23.0.1 |
Vulmon