Mozilla Firefox up to 13 ElementAnimations::EnsureStyleRuleFor() buffer overflow

VulDB: Mozilla Firefox up to 13 ElementAnimations::EnsureStyleRuleFor() buffer overflow

General

Mozilla

scipID: 5671
Affected: Mozilla Firefox up to 13
Published: 07/17/2012 (Abhishek Arya (Inferno))
Risk: critical
Entry: 92.9% complete
Created: 07/23/2012
Updated: 09/03/2012

Summary

A vulnerability classified as critical was found in Mozilla Firefox up to 13. Affected by this vulnerability is the function ElementAnimations::EnsureStyleRuleFor(). The manipulation with an unknown input leads to a buffer overflow vulnerability. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was released 07/17/2012 by Abhishek Arya (Inferno) with Google as MFSA 2012-44 as advisory (Website). The advisory is shared for download at mozilla.org. The public release was coordinated with Mozilla. This vulnerability is known as CVE-2012-1953 since 03/30/2012. The exploitability is known to be difficult. The attack can be launched remotely. The exploitation doesn’t need any form of authentication. Technical details and also a private exploit are known.

Upgrading to version 14 eliminates this vulnerability. The upgrade is hosted for download at mozilla.org. A possible mitigation has been published immediately after the disclosure of the vulnerability. The vulnerability is also documented in the databases at OSVDB (83998) and Secunia (SA49965).