• Security Center
  • Security Advisories
  • Known Vulnerabilities
  • Bug Bounty
  • Security Blog

You are here: Security Center > Mozilla Foundation Security Advisories > MFSA 2012-80

Mozilla Foundation Security Advisory 2012-80

Title: Crash with invalid cast when using instanceof operator
Impact: Critical
Announced: October 9, 2012
Reporter: Ms2ger
Products: Firefox, Thunderbird, SeaMonkey

Fixed in: Firefox 16
  Thunderbird 16
  SeaMonkey 2.13

Description

Mozilla community member Ms2ger reported a crash due to an invalid cast when using the instanceof operator on certain types of JavaScript objects. This can lead to a potentially exploitable crash.

In general these flaws cannot be exploited through email in the Thunderbird and SeaMonkey products because scripting is disabled, but are potentially a risk in browser or browser-like contexts in those products.

References

• ASSERTION: This only works on nsISupports classes! and segfault
• CVE-2012-3989