Mozilla.Firefox.ZWNJ.Stack.Corruption
Description
Multiple Mozilla products, including Firefox, Thunderbird, Mozilla Suite have a stack corruption vulnerability. A remote attacker could execute arbitrary code via Unicode sequences with ZWNJ (zero-width non-joiner) characters.
Affected Products
Mozilla Firefox version 1.0.6 and prior
Mozilla Suite version 1.7.11 and prior
Mozilla Thunderbird version 1.0.6 and prior
Impact
Gain Access
Recommended Actions
Upgrade to Mozilla Firefox 1.0.7 or Mozilla Suite 1.7.12 :
http://www.mozilla.org/products/
Upgrade to Mozilla Thunderbird 1.0.7 :
http://www.mozilla.org/products/thunderbird/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |