The cycle collection (CC) implementation in Mozilla Firefox before 25.0, Firefox ESR 24.x before 24.1, Thunderbird before 24.1, and SeaMonkey before 2.22 does not properly determine the thread for release of an image object, which allows remote attackers to execute arbitrary code or cause a denial of service (race condition and application crash) via a large HTML document containing IMG elements, as demonstrated by the Never-Ending Reddit on reddit.com.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:N/AC:M/Au:N/C:P/I:P/A:P
Vendors | Products |
---|---|
Mozilla |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
Configuration 3 [-]
|
Configuration 4 [-]
|
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2013-10-30T10:00:00
Updated: 2017-09-18T12:57:01
Reserved: 2013-08-26T00:00:00
Link: CVE-2013-5596
JSON object: View
NVD Information
Status : Modified
Published: 2013-10-30T10:55:04.477
Modified: 2018-10-30T16:26:10.390
Link: CVE-2013-5596
JSON object: View
Redhat Information
No data.
CWE