#VU33563 Use-after-free in products


| Updated: 2020-08-04

Vulnerability identifier: #VU33563

Vulnerability risk: High

CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-5376

CWE-ID: CWE-416

Exploitation vector: Network

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Use-after-free while manipulating XSL in XSLT documents. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.

Mitigation
Install update from vendor's website.

External links
http://rhn.redhat.com/errata/RHSA-2017-0190.html
http://rhn.redhat.com/errata/RHSA-2017-0238.html
http://www.securityfocus.com/bid/95758
http://www.securitytracker.com/id/1037693
http://bugzilla.mozilla.org/show_bug.cgi?id=1311687
http://security.gentoo.org/glsa/201702-13
http://security.gentoo.org/glsa/201702-22
http://www.debian.org/security/2017/dsa-3771
http://www.debian.org/security/2017/dsa-3832
http://www.mozilla.org/security/advisories/mfsa2017-01/
http://www.mozilla.org/security/advisories/mfsa2017-02/
http://www.mozilla.org/security/advisories/mfsa2017-03/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Gentoo update for Mozilla Firefox
Gentoo update for Mozilla Thunderbird
SUSE Linux update for MozillaFirefox
SUSE Linux update for MozillaFirefox
Arch Linux update for thunderbird
Slackware Linux update for mozilla-thunderbird
Use-after-free in firefox-esr (Alpine package)