Endpoint Vulnerability

Use-after-free while manipulating HTML media content

Description

An anonymous researcher reported, via HP's Zero Day Initiative, a use-after-free vulnerability with HTML media elements on a page during script manipulation of the URI table of these elements. This results in a potentially exploitable crash.

Affected Products

Thunderbird

References

CVE-2015-4509,