FireFox and Opera beta Remote Memory Information Leak
Opera and FireFox contains vulnerable code for handling BMP files with partial palette. The code allows to craft a BMP file that leaks information from the heap. This information can be sent to remote server using canvas tag (HTML 5) and javascript.
Vulnerable Systems:
* Firefox version 2.0.0.11 and prior that support canvas.getImageData or any other method to acquire image data are affected
* Opera version 9.50 beta
Immune Systems:
* Firefox version 2.0.0.12
* Opera version 9.24
* Opera version 9.25
