|
|||
Rule General Information |
---|
Release Date: | 2017-07-13 | |
Rule Name: | Mozilla Firefox Webgl Integer Overflow Vulnerability -1 (CVE-2017-5459) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | A memory corruption vulnerability was found in WebGL components of Mozilla Firefox. The vulnerability is caused by an integer overflow in Intersect function when calculating destination frame buffer width and height. | |
Impact: | An attacker can exploit the affected software with a integer overflow vulnerability. Successful exploit leads to execute arbitrary code, and failed exploit may disturb the software logic and cause denial of service. | |
Affected OS: | Windows, Mac OS, Linux | |
Reference: | SecurityFocusBID:97940 https://bugzilla.mozilla.org/show_bug.cgi https://www.mozilla.org/security/advisories/mfsa2017-10/ https://www.mozilla.org/security/advisories/mfsa2017-11/ |
|
Solutions |
---|
More advisories have been published on the website, please visit for more suggestions: https://github.com/mozilla/gecko-dev/commit/5108749361b09facaf317f06dd9d9d9f2af56ea7 |