| This vulnerability occurs because of computation that reads data that is past the end of the target buffer; the computation is a part of JavaScript engine. A specifically crafted call to a JavaScript function leads to flawed computation that involves data structure manipulation which does not adequately account for the data structure boundaries. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure. |
