Archive for mars 2011

icon_firefox[CVE 2011-0061] Buffer OverFlow/Crash caused by corrupted JPEG image

cve2011-0061mfsa2011-09


Crash caused by corrupted JPEG image


Announced: March 1, 2011
Reporter: Jordi Chancel
Impact: Critical
Products: Firefox, Thunderbird
Fixed in: Firefox 3.6.14 – Thunderbird 3.1.8


Description

Security researcher Jordi Chancel reported that a
JPEG image could be constructed that would be decoded incorrectly,
causing data to be written past the end of a buffer created to store
the image. An attacker could potentially craft such an image that
would cause malicious code to be stored in memory and then later
executed on a victim’s computer.


Firefox 3.5 was not affected by this issue.


  • Vidéo de démonstration :


Security Researcher Jordi Chancel