exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-047
Posted Apr 3, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-047 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the libpr0n library which is responsible for handling image caching and animation and is due to the way the application handles animations received from the server via the multipart/x-mixed-replace mimetype. During a case where the bits-per-pixel changes, the application will free a pointer and then can be made to reuse the freed pointer later. This can lead to code execution under the context of the application.

tags | advisory, remote, arbitrary, code execution
advisories | CVE-2010-0164
MD5 | 955e094e86daecba33775c53fe9a4450
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Trump's U.S. Golf Association Account Got Hacked
Posted May 20, 2019

tags | headline, hacker, government, usa
Instagram Hacker Forum Gets Hacked By Hackers
Posted May 20, 2019

tags | headline, hacker, facebook
Slack Bug Allows Remote File Hijacking, Malware Injection
Posted May 20, 2019

tags | headline, malware, data loss, flaw
Over 20k Linksys Routers Leak Every Device Ever Connected
Posted May 20, 2019

tags | headline, privacy, data loss, flaw, cisco
Everything You Need To Know About GDPR
Posted May 17, 2019

tags | headline, government, privacy
Magecart POS Malware Found On Forbes Subscription Page
Posted May 17, 2019

tags | headline, hacker, malware, bank, cybercrime, fraud
Senate Unlikely To Vote On Election Security Despite Risk
Posted May 17, 2019

tags | headline, government, usa, russia, fraud, cyberwar
Hacktivist Attacks Dropped By 95% Since 2015
Posted May 17, 2019

tags | headline, hacker, government, anonymous
US Telcos Say They Stopped Selling User Location Data, With A Few Exceptions
Posted May 16, 2019

tags | headline, privacy, phone, data loss, fraud
ARIN Recovers 735,000 Fraudulently Obtained IPv4 Addresses
Posted May 16, 2019

tags | headline, fraud
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close