The WebGL implementation in Mozilla Firefox 4.x up to and including 4.0.1 does not properly restrict read operations, which allows remote malicious users to obtain sensitive information from GPU memory associated with an arbitrary process, or cause a denial of service (application crash), via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 4.0 |
||
mozilla firefox 4.0.1 |