Endpoint Vulnerability

Use-after-free in TypeObject

Description

Security research firm VUPEN, via TippingPoint's Pwn2Own contest, reported that memory pressure during Garbage Collection could lead to memory corruption of TypeObjects in the JS engine, resulting in an exploitable use-after-free condition.

Affected Products

SeaMonkey

References

CVE-2014-1512,