CVE-2011-2998
Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression.
Date published : 2011-09-30
http://www.mozilla.org/security/announce/2011/mfsa2011-37.html