The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
7,684 vulnerabilities with CWE-416
CVE-2012-3990
Firefox < 16.0 - Use-After-Free in IME State Manager
CVE-2012-3988
Mozilla Firefox < 16.0 - Use-After-Free via Full-Screen Mode and History Navigation
CVE-2012-4969
HIGH
KEV
Microsoft Internet Explorer <10 - RCE
CVSS 8.1
CVE-2012-3968
Mozilla Firefox < 15.0 - Use-After-Free in WebGL Fragment Shader Accessor
CVE-2012-3963
Firefox < 15.0 - Use-After-Free in js::gc::MapAllocToTraceKind
CVE-2012-3961
Mozilla Firefox < 15.0 - Use-After-Free in RangeData Implementation
CVE-2012-3960
Firefox < 15.0 - Use-After-Free in mozSpellChecker::SetCurrentDictionary
CVE-2012-3959
Mozilla Firefox < 15.0 - Use-After-Free in nsRangeUpdater::SelAdjDeleteNode
CVE-2012-3956
Firefox < 15.0 - Use-After-Free in MediaStreamGraphThreadRunnable
CVE-2012-1976
Firefox < 15.0 - Use-After-Free in nsHTMLSelectElement::SubmitNamesValues
CVE-2012-1975
Firefox < 15.0 - Use-After-Free in PresShell::CompleteMove
CVE-2012-1974
Mozilla Firefox < 15.0 - Use-After-Free in gfxTextRun::CanBreakLineBefore
CVE-2012-1973
Mozilla Firefox < 15.0 - Use-After-Free in nsObjectLoadingContent::LoadObject
CVE-2012-1972
Firefox < 15.0 - Use-After-Free in nsHTMLEditor::CollapseAdjacentTextNodes
CVE-2012-1521
Google Chrome < 18.0.1025.168 - Use-After-Free in XML Parser
CVE-2012-1180
nginx < 1.0.14 and 1.1.x < 1.1.17 - Use-After-Free via Crafted Backend Response
CVE-2012-1845
Google Chrome < 17.0.963.66 - Use-After-Free
CVE-2011-10034
MEDIUM
AUTOMGEN <8.0.0.7 - Memory Corruption
CVE-2011-2334
MEDIUM
Blink < M12 - Use-After-Free in RenderLayer Reflection Handling
CVSS 6.5
CVE-2011-2353
MEDIUM
Blink < M13 - Use-After-Free in DocumentWriter::replaceDocument
CVSS 6.5
CVE-2011-3081
Google Chrome < 18.0.1025.168 - Use-After-Free via Element Floating
CVE-2011-3078
Google Chrome < 18.0.1025.168 - Use-After-Free via Element Floating
CVE-2011-3077
Google Chrome < 18.0.1025.151 - Use-After-Free in Script Bindings
CVE-2011-3076
Google Chrome < 18.0.1025.151 - Use-After-Free via Focus Handling
CVE-2011-3075
Google Chrome < 18.0.1025.151 - Use-After-Free via Style Application Commands
Details
Vulnerabilities
7,684
Exploit Likelihood
High