Lucene search

K
zdiRegenrechtZDI-10-064
HistoryApr 06, 2010 - 12:00 a.m.

Mozilla Firefox WOFF Font Format dirEntry Remote Code Execution Vulnerability

2010-04-0600:00:00
regenrecht
www.zerodayinitiative.com
15

EPSS

0.862

Percentile

98.6%

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the browser loads a WOFF-based font. Upon calculating the length of some data read from the file, the application will miscalculate a size used for an allocation, and then copy an incorrect amount of data into that buffer. Due to the difference between the size of the allocation and the size of the copy, a buffer overflow will occur which can lead to code execution under the context of the application.