Use-after-free vulnerability in nsIDocument::GetRootElement function in Mozilla Firefox before 22.0

Use-after-free vulnerability in nsIDocument::GetRootElement function in Mozilla Firefox before 22.0

CVE-2013-1685 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted web site.

Learn more about our Web App Pen Testing.