CVE-2011-2598 Information

Description

The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter an IFRAME element and uninitialized data in graphics memory.

Reference

http://blog.mozilla.com/security/2011/06/16/webgl-graphics-memory-stealing-issue/ http://www.contextis.com/resources/blog/webgl2/ http://www.securityfocus.com/bid/48319 http://www.theregister.co.uk/2011/06/16/webgl_security_threats_redux/ https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14207