Mozilla Firefox WOFF-Based Font Decoder Integer Overflow Remote Code Execution Vulnerability

Working commercial exploits are available through VulnDisco and CORE IMPACT. These exploits are not otherwise publicly available or known to be circulating in the wild. Mozilla has also confirmed the existence of a private exploit for this issue.

The following exploit is available:


 

Privacy Statement
Copyright 2010, SecurityFocus