Use-after-free vulnerability in nsFrameList::FirstChild function in Mozilla Firefox and Thunderbird before 21.0 allows remote code execution or denial of service

Use-after-free vulnerability in nsFrameList::FirstChild function in Mozilla Firefox and Thunderbird before 21.0 allows remote code execution or denial of service

CVE-2013-1680 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in the nsFrameList::FirstChild function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.