[Forgot Password]
Login  Register Subscribe

23631

 
 

127000

 
 

102010

 
 

909

 
 

81341

 
 

133

Paid content will be excluded from the download.


Download | Alert*
OVAL

Mozilla Products: Improperly initialized memory and overflows in some JavaScript functions - mfsa2013-96

ID: oval:org.secpod.oval:def:16294Date: (C)2013-12-30   (M)2018-01-30
Class: PATCHFamily: macos




Compiler Engineer Dan Gohman of Google discovered a flaw in the JavaScript engine where memory was being incorrectly allocated for some functions and the calls for allocations were not always properly checked for overflow, leading to potential buffer overflows. When combined with other vulnerabilities, these flaws could be potentially exploitable.

Platform:
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Apple Mac OS X Server 10.11
Apple Mac OS X Server 10.12
Product:
Mozilla Firefox
Mozilla Thunderbird ESR
Mozilla SeaMonkey
Mozilla Thunderbird
Mozilla Firefox ESR
Reference:
MFSA 2013-96
CVE-2013-5595
CVE    1
CVE-2013-5595
CPE    153
cpe:/a:mozilla:firefox_esr:17.0.9
cpe:/a:mozilla:firefox_esr:17.0.8
cpe:/a:mozilla:thunderbird_esr
cpe:/a:mozilla:thunderbird_esr:17.0.9
...

© 2013 SecPod Technologies