You are here: Security Center > Mozilla Foundation Security Advisories > MFSA 2012-58

Mozilla Foundation Security Advisory 2012-58

Title: Use-after-free issues found using Address Sanitizer
Impact: Critical
Announced: August 28, 2012
Reporter: Abhishek Arya
Products: Firefox, Thunderbird, SeaMonkey

Fixed in: Firefox 15
  Firefox ESR 10.0.7
  Thunderbird 15
  Thunderbird ESR 10.0.7
  SeaMonkey 2.12

Description

Security researcher Abhishek Arya (Inferno) of the Google Chrome Security Team discovered a series of use-after-free issues using the Address Sanitizer tool. Many of these issues are potentially exploitable, allowing for remote code execution.

References