Mozilla Thunderbird CVE-2013-0748 Information Disclosure Vulnerability

description-logoDescription

Mozilla security researcher Jesse Ruderman discovered that using the toString function of XBL objects can lead to inappropriate information leakage by revealing the address space layout instead of just the ID of the object. This layout information could potentially be used to bypass ASLR and other security protections.

affected-products-logoAffected Applications

Thunderbird

CVE References

CVE-2013-0748