amaya -- Attribute Value Buffer Overflow Vulnerabilities

2006-04-14T00:00:00
ID DC930435-D59F-11DA-8098-00123FFE8333
Type freebsd
Reporter FreeBSD
Modified 2006-04-14T00:00:00

Description

Secunia reports:

Amaya have two vulnerabilities, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to boundary errors within the parsing of various attribute values. This can be exploited to cause stack-based buffer overflows when a user opens a specially crafted HTML document containing certain tags with overly long attribute values. Successful exploitation allows execution of arbitrary code.