Basic search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:25840
HistoryMar 03, 2011 - 12:00 a.m.

Mozilla Foundation Security Advisory 2011-04

2011-03-0300:00:00
vulners.com
28

Mozilla Foundation Security Advisory 2011-04

Title: Buffer overflow in JavaScript upvarMap
Impact: Critical
Announced: March 1, 2011
Reporter: Christian Holler
Products: Firefox, SeaMonkey

Fixed in: Firefox 3.6.14
Firefox 3.5.17
SeaMonkey 2.0.12
Description

Security researcher Christian Holler reported that the JavaScript engine's internal memory mapping of non-local JS variables contained a buffer overflow which could potentially be used by an attacker to run arbitrary code on a victim's computer.
References

* https://bugzilla.mozilla.org/show_bug.cgi?id=615657
* CVE-2011-0054
Related for SECURITYVULNS:DOC:25840