cve/2013/CVE-2013-1685.md

CVE-2013-1685

Description

Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted web site.

POC

Reference

• http://www.ubuntu.com/usn/USN-1891-1

Github

No PoCs found on GitHub currently.