CVE-2014-8637

2015-01-14T11:59:00
ID CVE-2014-8637
Type cve
Reporter cve@mitre.org
Modified 2017-09-08T01:29:00

Description

Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element.