Mozilla Firefox WOFF-Based Font Decoder Integer Overflow Remote Code Execution Vulnerability

Mozilla Firefox is prone to a remote code-execution vulnerability due to an integer-overflow error in the WOFF decoder.

Successful exploits may allow an attacker to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in denial-of-service conditions.

The issue affects Mozilla Firefox 3.6.


 

Privacy Statement
Copyright 2010, SecurityFocus