DescriptionHeap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla before 1.7.6 might allow remote attackers to cause a denial of service (crash) or execute arbitrary code via invalid sequences in a UTF8 encoded string that result in a zero length value.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
- SUSE-SA:2006:022, published Tue, 25 Apr 2006 15:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE LINUX 10.0 |
SUSE LINUX 9.2
SUSE LINUX 9.3
|SUSE LINUX 9.1 for IA32 |
SUSE LINUX 9.1 for x86-64