cve/2018/CVE-2018-5177.md

### [CVE-2018-5177](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5177)
![](https://img.shields.io/static/v1?label=Product&message=Firefox&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2060%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20overflow%20in%20XSLT%20during%20number%20formatting&color=brighgreen)

### Description

A vulnerability exists in XSLT during number formatting where a negative buffer size may be allocated in some instances, leading to a buffer overflow and crash if it occurs. This vulnerability affects Firefox < 60.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/DanielEbert/winafl
- https://github.com/Team-BT5/WinAFL-RDP
- https://github.com/bacon-tomato-spaghetti/WinAFL-RDP
- https://github.com/chaojianhu/winafl-intelpt
- https://github.com/googleprojectzero/winafl
- https://github.com/hardik05/winafl-powermopt
- https://github.com/pranav0408/WinAFL
- https://github.com/s0i37/winafl_inmemory
- https://github.com/ssumachai/CS182-Project
- https://github.com/yrime/WinAflCustomMutate