1. Home
  2. Vulnerabilities
  3. CVE-2015-2713

CVE-2015-2713

CVSS v2.0 6.8 (Medium)
68% Progress
EPSS 2.18 % (90th)
2.18% Progress
Affected Products 7
Advisories 13
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a document containing crafted text in conjunction with a Cascading Style Sheets (CSS) token sequence containing properties related to vertical text.

Weaknesses
CWE-NVD-Other
CVE Status
PUBLISHED
CNA
Mozilla Corporation
Published Date
2015-05-14 10:59:06
(9 years ago)
Updated Date
2023-09-12 14:55:31
(12 months ago)

Affected Products

Mozilla

Novell

Opensuse

Configuration #1

    CPE23 From Up To
  Novell Suse Linux Enterprise Software Development Kit 12.0 cpe:2.3:a:novell:suse_linux_enterprise_software_development_kit:12.0
  Novell Suse Linux Enterprise Desktop 12.0 cpe:2.3:o:novell:suse_linux_enterprise_desktop:12.0
  Novell Suse Linux Enterprise Server 12.0 cpe:2.3:o:novell:suse_linux_enterprise_server:12.0
  Opensuse 13.1 cpe:2.3:o:opensuse:opensuse:13.1
  Opensuse 13.2 cpe:2.3:o:opensuse:opensuse:13.2

Configuration #2

    CPE23 From Up To
  Mozilla Firefox 37.0.2 and prior versions cpe:2.3:a:mozilla:firefox <= 37.0.2

Configuration #3

    CPE23 From Up To
  Mozilla Thunderbird 31.5 and prior versions cpe:2.3:a:mozilla:thunderbird <= 31.5

Configuration #4

    CPE23 From Up To
  Mozilla Firefox Esr 31.0 cpe:2.3:a:mozilla:firefox_esr:31.0
  Mozilla Firefox Esr 31.1 cpe:2.3:a:mozilla:firefox_esr:31.1
  Mozilla Firefox Esr 31.1.0 cpe:2.3:a:mozilla:firefox_esr:31.1.0
  Mozilla Firefox Esr 31.1.1 cpe:2.3:a:mozilla:firefox_esr:31.1.1
  Mozilla Firefox Esr 31.2 cpe:2.3:a:mozilla:firefox_esr:31.2
  Mozilla Firefox Esr 31.3 cpe:2.3:a:mozilla:firefox_esr:31.3
  Mozilla Firefox Esr 31.3.0 cpe:2.3:a:mozilla:firefox_esr:31.3.0
  Mozilla Firefox Esr 31.4 cpe:2.3:a:mozilla:firefox_esr:31.4
  Mozilla Firefox Esr 31.5 cpe:2.3:a:mozilla:firefox_esr:31.5
  Mozilla Firefox Esr 31.5.1 cpe:2.3:a:mozilla:firefox_esr:31.5.1
  Mozilla Firefox Esr 31.5.2 cpe:2.3:a:mozilla:firefox_esr:31.5.2
  Mozilla Firefox Esr 31.5.3 cpe:2.3:a:mozilla:firefox_esr:31.5.3
  Mozilla Firefox Esr 31.6.0 cpe:2.3:a:mozilla:firefox_esr:31.6.0