CVE-2016-5270

2016-09-22T22:59:00
ID CVE-2016-5270
Type cve
Reporter cve@mitre.org
Modified 2018-06-12T01:29:00

Description

Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to cause a denial of service (boolean out-of-bounds write) or possibly have unspecified other impact via Unicode characters that are mishandled during text conversion.