Mozilla Thunderbird CVE-2013-0744 Use After Free Vulnerability
Description
Using the Address Sanitizer tool, security researcher Atte Kettunen from OUSPG discovered that the combination of large numbers of columns and column groups in a table could cause the array containing the columns during rendering to overwrite itself. This can lead to a user-after-free causing a potentially exploitable crash.
Affected Applications
Thunderbird
Thunderbird ESR