Integer overflow in the NewIdArray function in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allows remote attackers to execute arbitrary code via a JavaScript array with many elements.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 3.6.2 | 3.6.2 |
Firefox | Mozilla | 3.6.3 | 3.6.3 |
Firefox | Mozilla | 3.6.11 | 3.6.11 |
Firefox | Mozilla | 3.6.8 | 3.6.8 |
Firefox | Mozilla | 3.6.9 | 3.6.9 |
Firefox | Mozilla | 3.6.12 | 3.6.12 |
Firefox | Mozilla | 3.6.6 | 3.6.6 |
Firefox | Mozilla | 3.6.10 | 3.6.10 |
Firefox | Mozilla | 3.6.7 | 3.6.7 |
Firefox | Mozilla | 3.6.4 | 3.6.4 |
Firefox | Mozilla | 3.6 | 3.6 |