Mozilla Firefox prior to 31.0, Firefox ESR 24.x prior to 24.7, and Thunderbird prior to 24.7 allow remote malicious users to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScript library.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla thunderbird |
||
mozilla thunderbird 24.5 |
||
mozilla thunderbird 24.4 |
||
mozilla firefox esr 24.0 |
||
mozilla firefox esr 24.5 |
||
mozilla firefox |
||
mozilla thunderbird 24.0 |
||
mozilla thunderbird 24.0.1 |
||
mozilla firefox esr 24.0.1 |
||
mozilla firefox esr 24.0.2 |
||
mozilla firefox esr 24.1.0 |
||
mozilla thunderbird 24.1 |
||
mozilla thunderbird 24.1.1 |
||
mozilla firefox esr 24.1.1 |
||
mozilla firefox esr 24.2 |
||
mozilla firefox esr 24.6 |
||
mozilla thunderbird 24.2 |
||
mozilla thunderbird 24.3 |
||
mozilla firefox esr 24.3 |
||
mozilla firefox esr 24.4 |