133506 : SeaMonkey < 1.1.11 CSSValue Array Memory Corruption

Risk 5 : Windows

The installed version of SeaMonkey may allow a remote attacker to execute arbitrary code on the remote host by creating a very large number of references to a common CSS object, which can lead to an overflow the CSS reference counter, causing a crash when the browser attempts to free the CSS object while still in use.

Solution:
Upgrade to SeaMonkey 1.1.11 or later.
References:
CVSS Information:
Complete Confidentiality Impact, Complete Integrity Impact, Complete Availability Impact
Credit:
Tenable : 2009-12-04
New Search
Keywords
Risk Factor
Start Date
End Date
Browse