Lucene search
SecurityvulnsSECURITYVULNS:DOC:20173HistoryJul 18, 2008 - 12:00 a.m.
Mozilla Foundation Security Advisory 2008-36
2008-07-1800:00:00
vulners.com
20
Mozilla Foundation Security Advisory 2008-36
Title: Crash with malformed GIF file on Mac OS X
Impact: Critical
Announced: July 16, 2008
Reporter: Drew Yao
Products: Firefox 3
Fixed in: Firefox 3.0.1
Description
Drew Yao of Apple Product Security reported a vulnerability in Mozilla graphics code which handles GIF rendering in Mac OS X. He demonstrated that a GIF file could be specially crafted to cause the browser to free an uninitialized pointer. An attacker could use this vulnerability to crash the browser and potentially execute arbitrary code on the victim's computer.
Firefox 2 is not affected by this issue.
References
* https://bugzilla.mozilla.org/show_bug.cgi?id=441360
* CVE-2008-2934
Related
seebug
seebug
Mac OS XεΉ³ε°δΈFirefox GIFεΎε½’ζΈ²ζε
εη ΄εζΌζ΄
2008-07-18 00:00:00
cve
cve
CVE-2008-2934
2008-07-18 16:41:00
ubuntucve
ubuntucve
CVE-2008-2934
2008-07-18 00:00:00
mozilla
mozilla
Crash with malformed GIF file on Mac OS X β Mozilla
2008-07-16 00:00:00
prion
prion
Null pointer dereference
2008-07-18 16:41:00
nessus
nessus
Ubuntu 8.04 LTS : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-626-1)
2008-07-29 00:00:00
openSUSE Security Update : MozillaFirefox (MozillaFirefox-125)
2009-07-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-626-1)
2009-03-23 00:00:00
Ubuntu Update for firefox-3.0, xulrunner-1.9 vulnerabilities USN-626-1
2009-03-23 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2008-07-18 00:00:00
ubuntu
ubuntu
Firefox and xulrunner vulnerabilities
2008-07-28 00:00:00
Related for SECURITYVULNS:DOC:20173