Lucene search

K

Veracode Vulnerability DatabaseVERACODE:18077

HistoryMay 02, 2019 - 6:12 a.m.

Denial Of Service (DoS)

2019-05-0206:12:43

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

12

EPSS

0.007

Percentile

80.3%

Mozilla Firefox is vulnerable to use-after-free vulnerability. This is possible with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. An attacker may exploit this issue to crash the affected application, resulting in a denial-of-service condition.

References

www.securityfocus.com/bid/99040

www.securitytracker.com/id/1038689

access.redhat.com/errata/RHSA-2017:1440

access.redhat.com/errata/RHSA-2017:1561

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/show_bug.cgi?id=1365602

www.debian.org/security/2017/dsa-3881

www.debian.org/security/2017/dsa-3918

www.mozilla.org/en-US/security/advisories/mfsa2017-16/

www.mozilla.org/security/advisories/mfsa2017-15/

www.mozilla.org/security/advisories/mfsa2017-16/

www.mozilla.org/security/advisories/mfsa2017-17/

EPSS

0.007

Percentile

80.3%

Related for VERACODE:18077

debiancve1 cvelist1 nvd1 ubuntucve1 cve1 redhatcve1 prion1 threatpost1 openvas29 altlinux2 mageia3 nessus32 osv5 oraclelinux2 debian4 ibm2 ubuntu2 redhat2 centos2 archlinux2 kaspersky2 mozilla3 freebsd1 suse3 gentoo1