Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to graphics rendering and (1) handling of a long alert messagebox in the cairo_surface_set_device_offset function, (2) integer overflows when handling animated PNG data in the info_callback function in nsPNGDecoder.cpp, and (3) an integer overflow when handling SVG data in the nsSVGFEGaussianBlurElement::SetupPredivide function in nsSVGFilters.cpp.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-09-24 13:37
Updated : 2017-09-28 18:31
NVD link : CVE-2008-4064
Mitre link : CVE-2008-4064
JSON object : View
CWE
Products Affected
mozilla
- firefox