Arbitrary Code Execution and Denial of Service Vulnerability in WebGL Subsystem

Arbitrary Code Execution and Denial of Service Vulnerability in WebGL Subsystem

CVE-2012-5838 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via large image dimensions.

Learn more about our Web App Pen Testing.