CVE-2014-1549

by Fred · 23/07/2014

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via crafted audio content that is improperly handled during playback buffering.

Date published : 2014-07-23

http://www.securityfocus.com/bid/68820

http://www.mozilla.org/security/announce/2014/mfsa2014-57.html

CVE-2014-1549

Similar

Recent Posts

Categories

CVE-2014-1549

Share this:

Similar

Recent Posts

Categories

Tags