Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Race condition in the FastCopy optimization in the Array.Copy method in metadata/icall.c in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to trigger a buffer overflow and modify internal data structures, and cause a denial of service (plugin crash) or corrupt the internal state of the security manager, via a crafted media file in which a thread makes a change after a type check but before a copy action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell Moonlight Mono Array.Copy 'FastCopy'竞争条件漏洞
Vulnerability Description
Mono是一个自由开源的项目。该项目的目标是创建一系列符合ECMA标准(Ecma-334和Ecma-335)的.NET工具,包括C#编译器和通用语言架构。 当使用Moonlight 2.4.1之前的2.x版本或者3.99.3之前的3.x版本时,Mono中的metadata/icall.c的Array.Copy方法中的FastCopy最优化存在竞争条件漏洞。远程攻击者可以借助特制媒体文件(该文件中的线程在类型检查之后而不是在执行复制操作之前做出改变),触发缓冲区溢出和修改内部数据结构,并导致拒绝服务(插件崩
CVSS Information
N/A
Vulnerability Type
N/A