Use-after-free vulnerability in nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox and Thunderbird before 24.5 allows remote code execution or denial of service

Use-after-free vulnerability in nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox and Thunderbird before 24.5 allows remote code execution or denial of service

CVE-2014-1531 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving an imgLoader object that is not properly handled during an image-resize operation.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.