Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
BID:30266
Info
Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
| Bugtraq ID: | 30266 |
| Class: | Design Error |
| CVE: |
CVE-2008-2934 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 16 2008 12:00AM |
| Updated: | May 15 2009 11:46PM |
| Credit: | Drew Yao |
| Vulnerable: |
Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Sun Solaris 10.0_x86 Sun Solaris 10.0 Sun OpenSolaris build snv_94 Sun OpenSolaris build snv_93 Sun OpenSolaris build snv_92 Sun OpenSolaris build snv_91 Sun OpenSolaris build snv_90 Sun OpenSolaris build snv_89 Nortel Networks Self-Service Peri Workstation 0 Nortel Networks Self-Service Peri Application 0 Nortel Networks Self-Service MPS 1000 0 Nortel Networks Self-Service - CCSS7 0 Mozilla Firefox 3.0 Avaya Interactive Response 4.0 |
| Not Vulnerable: |
Mozilla Firefox 3.0.1 |
Discussion
Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
Mozilla Firefox for Mac OS X is prone to a memory-corruption vulnerability.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely crash the application.
This issue affects Firefox 3.0.
Mozilla Firefox for Mac OS X is prone to a memory-corruption vulnerability.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely crash the application.
This issue affects Firefox 3.0.
Exploit / POC
Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
Solution:
Mozilla has released an advisory and updates to address this issue. Please see the references for more information.
Solution:
Mozilla has released an advisory and updates to address this issue. Please see the references for more information.
References
Mozilla Firefox Mac OS X GIF Rendering Memory Corruption Vulnerability
References:
References:
- Vendor Homepage (Mozilla Foundation)
- ASA-2009-158 - Multiple Security Vulnerabilities in Firefox Versions Before 2.0. (Avaya)
- MFSA 2008-36 - Mozilla Foundation Security Advisory 2008-36 (Mozilla Foundation)
- Nortel Response to Sun Alert 256408 - Solaris 10 - Vulnerabilities in Firefox Ma (Nortel Networks)
- Solution 256408: Multiple Security Vulnerabilities in Firefox (Sun)