CVE-2018-12292

CRITICAL

Pale Moon < 27.9.3 - Use-After-Free in DOMProxyHandler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-12292. PoCs published by Berk Cem Göksel.

AI-analyzed exploit summary This PoC exploits a use-after-free vulnerability in Pale Moon Browser versions prior to 27.9.3. The exploit triggers the vulnerability by manipulating distributed nodes in a content element, leading to potential remote code execution.

Description

A use-after-free vulnerability exists in DOMProxyHandler::EnsureExpandoObject in Pale Moon before 27.9.3.

Exploits (1)

exploitdb WORKING POC

by Berk Cem Göksel · textlocalwindows

https://www.exploit-db.com/exploits/44900

View Code ZIP pw:eip

This PoC exploits a use-after-free vulnerability in Pale Moon Browser versions prior to 27.9.3. The exploit triggers the vulnerability by manipulating distributed nodes in a content element, leading to potential remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Pale Moon Browser < 27.9.3

No auth needed

Prerequisites: Target must be using a vulnerable version of Pale Moon Browser · Target must visit a malicious webpage hosting the exploit

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/44900/

Vendor Advisory x_refsource_confirm

https://www.palemoon.org/releasenotes.shtml

Scores

CVSS v3 9.8

EPSS 0.0918

EPSS Percentile 94.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (1)

palemoon/pale_moon < 27.9.3

Published Jun 13, 2018

Tracked Since Feb 18, 2026