Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox prior to 38.0, Firefox ESR 31.x prior to 31.7, and Thunderbird prior to 31.7 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) via a document containing crafted text in conjunction with a Cascading Style Sheets (CSS) token sequence containing properties related to vertical text.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell suse linux enterprise server 12.0 |
||
novell suse linux enterprise desktop 12.0 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
novell suse linux enterprise software development kit 12.0 |
||
mozilla firefox |
||
mozilla thunderbird |
||
mozilla firefox esr 31.1 |
||
mozilla firefox esr 31.3.0 |
||
mozilla firefox esr 31.1.1 |
||
mozilla firefox esr 31.5 |
||
mozilla firefox esr 31.6.0 |
||
mozilla firefox esr 31.3 |
||
mozilla firefox esr 31.5.3 |
||
mozilla firefox esr 31.5.1 |
||
mozilla firefox esr 31.1.0 |
||
mozilla firefox esr 31.2 |
||
mozilla firefox esr 31.4 |
||
mozilla firefox esr 31.0 |
||
mozilla firefox esr 31.5.2 |