The find_replen function in jsstr.c in the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote malicious users to read portions of heap memory in a Javascript string via the lambda replace method.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 1.0.1 |
||
mozilla firefox 1.0.2 |
||
mozilla mozilla 1.7.6 |
||
netscape navigator 7.2 |