firefox
Page content
- Author: Miklos Vajna
- Vulnerable: 3.6-1
- Unaffected: 3.6.2-1locris1
A vulnerability has been reported in Mozilla Firefox, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to an integer overflow error when processing WOFF fonts. This can be exploited to cause a heap-based buffer overflow via a web page embedding a WOFF font with an overly large “origLen” field.
- Bug Tracker URL: http://bugs.frugalware.org/task/4158