Firefox < 10.0.2 png_decompress_chunk Integer Overflow (Mac OS X)
High Nessus Plugin ID 58074
SynopsisThe remote Mac OS X host contains a web browser that is potentially affected by an integer overflow vulnerability.
DescriptionThe installed version of Firefox is earlier than 10.0.2 and is, therefore, potentially affected by an integer overflow vulnerability in libpng, a library used by this application. When decompressing certain PNG image files, this could be exploited to crash the application or even execute arbitrary code.
SolutionUpgrade to Firefox 10.0.2 or later.