Mozilla.Firefox.Libpng.Extra.Raw.Heap.Overflow
Description
This indicates an attack attempt to exploit a heap-based buffer-overflow vulnerability in Mozilla Firefox.
This issue is caused by an error in the vulnerable software when handling a malformed PNG file. It may allow remote attackers to execute arbitrary code by sending a crafted image file.
Affected Products
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.2
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5
Mozilla Firefox 3.6
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the vendor's web site:
http://www.mozilla.com
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |