Heap-based buffer overflow in the nsBidi::BracketData::AddOpening function in Mozilla Firefox prior to 48.0 and Firefox ESR 45.x prior to 45.3 allows remote malicious users to execute arbitrary code via directional content in an SVG document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla firefox esr 45.1.1 |
||
mozilla firefox esr 45.1.0 |
||
mozilla firefox esr 45.2.0 |
||
mozilla firefox esr 45.3.0 |