Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2013-0765

Source

Mozilla Foundation Security Advisory 2013-23

Wrapped WebIDL objects can be wrapped again

Announced

February 19, 2013

Reporter

Boris Zbarsky

Impact

Critical

Products

Firefox, SeaMonkey

Fixed in

Firefox 19
SeaMonkey 2.16

Description

Mozilla developer Boris Zbarsky reported that in some circumstances a wrapped WebIDL object can be wrapped multiple times, overwriting the existing wrapped state. This could lead to an exploitable condition in rare cases.

References

Wrapping a WebIDL object should beware WrapNativeParent reentering itself (CVE-2013-0765)

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Wrapped WebIDL objects can be wrapped again

Wrapped WebIDL objects can be wrapped again

Description

References

Vulmon Search

About

Products

Connect