CVE-2009-3389
CVE-2009-3389
Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used in Mozilla Firefox 3.5 before 3.5.6 and SeaMonkey before 2.0.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a video with large dimensions.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=504613https://bugzilla.mozilla.org/show_bug.cgi?id=515882http://secunia.com/advisories/37699http://secunia.com/advisories/37785http://secunia.com/advisories/37856http://secunia.com/advisories/37881http://secunia.com/advisories/39317https://exchange.xforce.ibmcloud.com/vulnerabilities/54805https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7967https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.html