The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird stem from the fact that when encoding data from “InputStream” into “xpcom”, the size of the encoded input data is calculated incorrectly. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird stem from the fact that when data is encoded from “InputStream” into “xpcom”, the size of the encoded input data is calculated incorrectly. Exploiting this vulnerability allows an attacker to...