Computer Security
[EN] securityvulns.ru no-pyccku


Mozilla Firefox and Microsoft Internet Explorer information leakage
Published:16.10.2014
Source:
SecurityVulns ID:14033
Type:client
Threat Level:
5/10
Description:Memory content leakage is possible on crafted image parsing.
CVE:CVE-2014-1580 (Mozilla Firefox before 33.0 does not properly initialize memory for GIF images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers a sequence of rendering operations for truncated GIF data within a CANVAS element.)
Original documentdocumentMichal Zalewski, two browser mem disclosure bugs (CVE-2014-1580 and CVE-something-or-other) (16.10.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod