Use-after-free vulnerability in the RefreshDriverTimer::TickDriver function in the SMIL Animation Controller in Mozilla Firefox before 30.0, Firefox ESR 24.x before 24.6, and Thunderbird before 24.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted web content.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Thunderbird | Mozilla | * | 24.5 (including) |
Thunderbird | Mozilla | 24.0 (including) | 24.0 (including) |
Thunderbird | Mozilla | 24.0.1 (including) | 24.0.1 (including) |
Thunderbird | Mozilla | 24.1 (including) | 24.1 (including) |
Thunderbird | Mozilla | 24.1.1 (including) | 24.1.1 (including) |
Thunderbird | Mozilla | 24.2 (including) | 24.2 (including) |
Thunderbird | Mozilla | 24.3 (including) | 24.3 (including) |
Thunderbird | Mozilla | 24.4 (including) | 24.4 (including) |