Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When adding a range to an object in the DOM, it is possible to use "addRange" to add the range to an incorrect root object. This triggers a use-after-free, resulting in a potentially exploitable crash. This vulnerability affects Firefox < 52 and Thunderbird < 52.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和Thunderbird 安全漏洞
Vulnerability Description
Mozilla Firefox和Thunderbird都是由美国Mozilla基金会开发的产品。Firefox是一款开源Web浏览器,Thunderbird是从Mozilla Application Suite中独立出来的一套电子邮件客户端软件。 Mozilla Firefox 52之前版本和Thunderbird 52之前版本中存在释放后重用漏洞,该漏洞源于程序使用‘addRange’可能会将区域添加到不正确的root对象上。攻击者可利用该漏洞造成拒绝服务(崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A