Oval Definition:oval:org.mitre.oval:def:14664
Revision Date:2014-10-06Version:30
Title:The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
Description:The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-3658
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Definition Synopsis
  • Determine if the version of Mozilla Firefox is equal to 8.0
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is equal to 8.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 8.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 8.0
  • OR Determine if the version of Mozilla Seamonkey is equal to 2.5
  • Mozilla Seamonkey is installed
  • AND Determine if the version of Mozilla Seamonkey is equal to 2.5
  • BACK