فا

‫ Mozilla Firefox Multiple Vulnerabilities

IRCAD2014063365

Number: IRCAD2014063365

Date: 2014/06/11

Criticality level: highly critical

Software:

Mozilla Firefox 29.x

Description

Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct clickjacking attacks and compromise a user's system.

1)Some unspecified errors can be exploited to corrupt memory.

2)An error in the "PropertyProvider::FindJustificationRange()" function can be exploited to cause an out-of-bounds read.

3)A use-after-free error in the "mozilla::dom::workers::WorkerPrivateParent" class can be exploited to corrupt heap-based memory.

4)An error when handling cursor rendering related to an embedded flash object can be exploited to render the cursor invisible outside the flash object and subsequently conduct clickjacking attacks.

This vulnerability is reported in versions prior to 30 running on OS X.

5)A use-after-free error in the "nsEventListenerManager::CompileEventHandlerInternal()" function can be exploited to corrupt heap-based memory.

6)A boundary error related to AudioBuffer channel counts and sample rate range within the Web Audio Speex resampler can be exploited to cause a buffer overflow.

Successful exploitation of the vulnerabilities #1 through #3, #5, and #6 may allow execution of arbitrary code.

The vulnerabilities #1 through #3, #5, and #6 are reported in versions prior to 30.

7)An error in the "navigator.getGamepads()" method within the Gamepad API can be exploited to cause a buffer overflow.

Successful exploitation of this vulnerability may allow execution of arbitrary code.

This vulnerability is reported in versions prior to 30 running on Windows 8.

Solution:

Upgrade to version 30.

Resources:
secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 24 خرداد 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0