Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Use-after-free vulnerability in the FontTableRec destructor in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 on Windows allows remote attackers to execute arbitrary code via crafted use of fonts in MathML content, leading to improper handling of a DirectWrite font-face object.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和Thunderbird 释放后重用漏洞
Vulnerability Description
Mozilla Firefox和Thunderbird都是由美国Mozilla基金会开发。Firefox是一款开源Web浏览器。Thunderbird是从Mozilla Application Suite中独立出来的一套电子邮件客户端软件。 运行在Windows系统上的Mozilla Firefox、Firefox ESR和Thunderbird中的FontTableRec析构函数中存在释放后重用漏洞,该漏洞源于程序没有正确处理DirectWrite font-face对象。远程攻击者可通过特制的字体利用
CVSS Information
N/A
Vulnerability Type
N/A