[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Mozilla Products: Uninitialized data in IonMonkey - mfsa2013-85

ID: oval:org.secpod.oval:def:16380Date: (C)2013-12-30   (M)2017-11-17
Class: PATCHFamily: macos




Software developer Dan Gohman of Google reported uninitialized data and variables in the IonMonkey Javascript engine when running the engine in Valgrind mode. This could be combined with additional exploits to allow the reading and use of previously allocated memory in some circumstances.

Platform:
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Apple Mac OS X Server 10.11
Apple Mac OS X Server 10.12
Product:
Mozilla Firefox
Mozilla SeaMonkey
Mozilla Thunderbird
Reference:
MFSA 2013-85
CVE-2013-1728
CVE    1
CVE-2013-1728
CPE    122
cpe:/a:mozilla:firefox:20.0.1
cpe:/a:mozilla:firefox:19.0.1
cpe:/a:mozilla:firefox:19.0.2
cpe:/a:mozilla:firefox:22.0
...

© 2013 SecPod Technologies