DescriptionHeap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla before 1.7.6 might allow remote attackers to cause a denial of service (crash) or execute arbitrary code via invalid sequences in a UTF8 encoded string that result in a zero length value.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2006:022, published Tue, 25 Apr 2006 15:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:04:22 2013
CVE page last modified: Fri Oct 7 12:45:30 2022