Use-after-free vulnerability in the nsHTMLSelectElement function in nsHTMLSelectElement.cpp in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allows remote attackers to execute arbitrary code via vectors involving removal of the parent node of an element.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:N/AC:L/Au:N/C:P/I:P/A:P
Vendors | Products |
---|---|
Mozilla |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
http://www.mozilla.org/security/announce/2012/mfsa2012-41.html | Vendor Advisory |
https://bugzilla.mozilla.org/show_bug.cgi?id=739343 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:15:08
Updated: 2022-10-03T16:15:08
Reserved: 2022-10-03T00:00:00
Link: CVE-2011-3671
JSON object: View
NVD Information
Status : Analyzed
Published: 2012-06-18T19:55:01.467
Modified: 2012-06-19T04:00:00.000
Link: CVE-2011-3671
JSON object: View
Redhat Information
No data.
CWE