Mozilla Products: Calling scope for new Javascript objects can lead to memory corruption - CVE-2013-1725ID: oval:org.secpod.oval:def:16395 | Date: (C)2013-12-30 (M)2023-12-07 |
Class: VULNERABILITY | Family: macos |
Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 do not ensure that initialization occurs for JavaScript objects with compartments, which allows remote attackers to execute arbitrary code by leveraging incorrect scope handling.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Product: |
Mozilla Thunderbird |
Mozilla Firefox ESR |
Mozilla SeaMonkey |
Mozilla Firefox |
Mozilla Thunderbird ESR |