Mozilla Thunderbird CVE-2015-2731 Vulnerability

description-logoDescription

Security researcher Herre reported a use-after-free vulnerability when a Content Policy modifies the Document Object Model to remove a DOM object, which is then used afterwards due to an error in microtask implementation. This leads to an exploitable crash.

affected-products-logoAffected Applications

Thunderbird

CVE References

CVE-2015-2731