Denial of Service Vulnerability in NativeKey Widget

Denial of Service Vulnerability in NativeKey Widget

CVE-2013-1723 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The NativeKey widget in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 processes key messages after destruction by a dispatched event listener, which allows remote attackers to cause a denial of service (application crash) by leveraging incorrect event usage after widget-memory reallocation.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.