![]() This violates same-origin policy and leads to information disclosure. This can be used to extract history information and read text values across domains. Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This vulnerability affects Firefox < 52 and Thunderbird < 52. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.Ī buffer overflow read during SVG filter color value operations, resulting in data exposure. This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could then displayed. ![]() This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.Īn out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a potentially exploitable crash. This vulnerability affects Firefox < 55.Ī buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This vulnerability affects Firefox < 57.Ī use-after-free vulnerability can occur when the layer manager is freed too early when rendering specific SVG content, resulting in a potentially exploitable crash. This vulnerability affects Firefox " tags can use "" tags within the SVG data to set cookies for that page. While the specification seems to allow this, other browsers do not, and web developers relied on this property for script security so gecko's implementation was aligned with theirs. This vulnerability affects Firefox element could have been used to load unexpected content that could have executed script in certain circumstances. This vulnerability affects Firefox href attribute of SVG tags however it incorrectly did not sanitize xlink:href attributes.This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |