Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27077
HistoryOct 01, 2011 - 12:00 a.m.

Mozilla Foundation Security Advisory 2011-41

2011-10-0100:00:00
vulners.com
22
JSON

Mozilla Foundation Security Advisory 2011-41

Title: Potentially exploitable WebGL crashes
Impact: Critical
Announced: September 27, 2011
Reporter: Michael Jordan, Ben Hawkes
Products: Firefox, SeaMonkey

Fixed in: Firefox 7.0
SeaMonkey 2.4
Description

Michael Jordon of Context IS reported that in the ANGLE library used by WebGL the return value from GrowAtomTable() was not checked for errors. If an attacker could cause requests that exceeded the available memeory those would fail and potentially lead to a buffer overrun as subsequent code wrote into the non-allocated space.

Ben Hawkes of the Google Security Team reported a WebGL test case that demonstrated an out of bounds write after an allocation failed.

References

https://bugzilla.mozilla.org/show_bug.cgi?id=680840
CVE-2011-3002
https://bugzilla.mozilla.org/show_bug.cgi?id=682335
CVE-2011-3003

Related

openvas 12
mozilla 1
prion 2
ubuntucve 2
seebug 1
cve 2
nessus 16
ubuntu 2
suse 1
freebsd 1
securityvulns 1
gentoo 1
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2011-41) - Linux
2021-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities - Mac OS X
2011-10-14 00:00:00
Mozilla Products Multiple Vulnerabilities - 01 - (Oct 2011) - Windows
2011-10-04 00:00:00
mozilla
mozilla
Potentially exploitable WebGL crashes โ€” Mozilla
2011-09-27 00:00:00
prion
prion
Design/Logic Flaw
2011-09-29 00:55:00
Buffer overflow
2011-09-29 00:55:00
ubuntucve
ubuntucve
CVE-2011-3003
2011-09-30 00:00:00
CVE-2011-3002
2011-09-30 00:00:00
seebug
seebug
Mozilla Firefoxๅ’ŒSeaMonkey่ฟœ็จ‹็ผ“ๅ†ฒๅŒบๆบขๅ‡บๆผๆดž
2011-09-29 00:00:00
cve
cve
CVE-2011-3002
2011-09-29 00:55:00
CVE-2011-3003
2011-09-29 00:55:00
nessus
nessus
Mozilla Firefox 6.0 Multiple Vulnerabilities
2011-09-29 00:00:00
Mozilla Firefox < 7.0 Multiple Vulnerabilities
2011-09-29 00:00:00
Mozilla SeaMonkey 2.x < 2.4.0 Multiple Vulnerabilities
2011-09-29 00:00:00
ubuntu
ubuntu
Mozvoikko, ubufox, webfav update
2011-10-04 00:00:00
Firefox vulnerabilities
2011-09-29 00:00:00
suse
suse
seamonkey: Update to Mozilla Seamonkey 2.4 (important)
2011-09-29 15:08:19
freebsd
freebsd
Mozilla -- multiple vulnerabilities
2011-09-27 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-10-01 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for SECURITYVULNS:DOC:27077
openvas12mozilla1prion2ubuntucve2seebug1cve2nessus16ubuntu2suse1freebsd1securityvulns1gentoo1