HNS MAIN FEED
Saturday, 04:23 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
Mozilla Firefox and SeaMonkey "libpr0n" GIF Parser Heap-Based Buffer Overflow
11 November 2009
Mozilla Firefox is a web browser. SeaMonkey is an open-source browser, email client, newsgroup client, IRC chat client, and HTML editor. The applications are exposed to a heap-based buffer overflow issue because they fail to perform adequate boundary checks on user-supplied data in the "libpr0n" GIF image parser, when handling color map changes in the "gif_image_header" section of the parser.
Ref: http://www.mozilla.org/security/announce/2009/mfsa2009-56.html
09.45.18 - CVE: CVE-2009-3373
Platform: Cross Platform
Ref: http://www.mozilla.org/security/announce/2009/mfsa2009-56.html
09.45.18 - CVE: CVE-2009-3373
Platform: Cross Platform