CVE-2009-2477

js/src/jstracer.cpp in the Just-in-time JIT JavaScript compiler aka TraceMonkey in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by a...

CVE-2009-2477

CVE-2009-2477 affects Mozilla Firefox 3.5 (JIT/TraceMonkey) and is caused by memory corruption in the JIT escape Function when using escape(), allowing remote code execution via crafted pages. Public details describe an uninitialized memory access triggered by certain document constructs (P and F...

Mozilla Firefox 3.5 TraceMonkey JavaScript engine uninitialized memory vulnerability

Overview Mozilla Firefox's javascript engine contains a vulnerability that may allow an attacker to execute code. Description Mozilla Firefox version 3.5 contains a vulnerability in the TraceMonkey components of Firefox's JavaScript engine.Per Mozilla Bug Bug 503286: "This is a JS engine bug...

Mozilla Firefox 3.5 'TraceMonkey' Component Remote Code Execution Vulnerability

Description Mozilla Firefox is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the user running the affected application. Failed attempts will likely result in denial-of-service conditions. The issue affects...