CVE-2012-4540

Priority
Description
Off-by-one error in the invoke function in IcedTeaScriptablePluginObject.cc
in IcedTea-Web 1.1.x before 1.1.7, 1.2.x before 1.2.2, 1.3.x before 1.3.1,
and 1.4.x before 1.4.1 allows remote attackers to obtain sensitive
information, cause a denial of service (crash), or possibly execute
arbitrary code via a crafted webpage that triggers a heap-based buffer
overflow, related to an error message and a "triggering event attached to
applet." NOTE: the 1.4.x versions were originally associated with
CVE-2013-4349, but that entry has been MERGED with this one.
Assigned-to
jdstrand
Notes
More Information

Updated: 2019-12-05 21:00:36 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)