A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mozilla

Published: 2018-06-11T21:00:00

Updated: 2018-06-12T09:57:01

Reserved: 2017-01-13T00:00:00


Link: CVE-2017-5404

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2018-06-11T21:29:04.217

Modified: 2018-08-07T13:02:46.247


Link: CVE-2017-5404

JSON object: View

cve-icon Redhat Information

No data.

CWE