‫ Mozilla Firefox / Thunderbird Multiple Vulnerabilities

IRCAD2014073422

ID: IRCAD2014073422

Release Date: 2014-07-23

Criticality level: Highly critical

Software:
Mozilla Firefox 30.x
Mozilla Thunderbird 24.x
Description:

Some vulnerabilities have been reported in Mozilla Firefox and Thunderbird, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

1) Some unspecified errors can be exploited to cause memory corruption.

2) Some other unspecified errors can be exploited to cause memory corruption.

3) An error when buffering Web Audio for playback can be exploited to cause a heap-based buffer overflow.

4) A use-after-free error related to ordering of control messages for Web Audio can be exploited to cause memory corruption.

5) A use-after-free error in DirectWrite when rendering MathML content can be exploited to cause memory corruption.

6) A use-after-free error when handling the FireOnStateChange event can be exploited to cause memory corruption.

7) An unspecified error when using the Cesium JavaScript library to generate WebGL content can be exploited to cause memory corruption.

8) The application bundles a vulnerable version of the Network Security Services (NSS) library.

9) A use-after-free error when handling certain image data while performing scaling operations in the Skia library can be exploited to cause memory corruption.

Successful exploitation of vulnerabilities #1 through #9 may allow execution of arbitrary code.

10) An error related to iframe elements when handling network redirects can be exploited to bypass iframe sandboxing restrictions.

NOTE: Additionally this fixes a weakness, which can be exploited to manipulate certain icons within the UI.

The vulnerabilities are reported in versions prior to 31.0.

Solution

Upgrade to version 31.0.

References:

Mozilla:

Secunia:

http://secunia.com/advisories/59803/


نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 5 مرداد 1393

امتیاز

امتیاز شما
تعداد امتیازها:0