Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and Firefox ESR < 68.9.
The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 77.0 (excluding) |
Firefox_esr | Mozilla | * | 68.9.0 (excluding) |
Thunderbird | Mozilla | * | 68.9.0 (excluding) |