Memory Corruption Vulnerability in Mozilla Firefox and SeaMonkey

Memory Corruption Vulnerability in Mozilla Firefox and SeaMonkey

CVE-2013-0792 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Mozilla Firefox before 20.0 and SeaMonkey before 2.17, when gfx.color_management.enablev4 is used, do not properly handle color profiles during PNG rendering, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a grayscale PNG image.

Learn more about our Web Application Penetration Testing UK.