Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS implementation in Mozilla Firefox 4.x through 13.0, Thunderbird 5.0 through 13.0, and SeaMonkey before 2.11 might allow remote attackers to obtain sensitive information from process memory via a crafted color profile that triggers an out-of-bounds read operation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox/Thunderbird/Seamonkey 信息泄露漏洞
Vulnerability Description
Mozilla是种公开发放、免费使用、开放源码的WEB浏览器,可运行于绝大多数Unix/Linux系统上,也可运行在MacOS和微软Windows 9x/ME/NT/2000/XP上。 Mozilla Firefox 4.x版本至13.0版本、Thunderbird 5.0版本至13.0版本、SeaMonkey 2.11之前版本中的QCMS实现上的qcms_transform_data_rgb_out_lut_sse2函数中存在漏洞。远程攻击者可利用该漏洞通过特制的颜色配置文件触发越界读取操作,从进程内存
CVSS Information
N/A
Vulnerability Type
N/A