Netscape/Mozilla IRC Buffer Overflow Vulnerability

Mozilla is a freely available, open-source web browser. It runs on most Linux and Unix variants, as well as MacOS and Microsoft Windows 9x/ME/NT/2000/XP operating systems. Netscape is another web-browser product which runs on the same platforms as Mozilla.

Netscape and Mozilla crash when handling an exceptionally long request (32KB+) for a channel using the IRC protocol.

This issue is most likely due to a buffer overflow condition, but it is not known whether this condition may be exploited to execute arbitrary attacker-supplied instructions.

Other browsers based on the Mozilla codebase (such as Galeon) may also be affected by this issue.


 

Privacy Statement
Copyright 2010, SecurityFocus