Mozilla.Products.SVGTextContentElement.Memory.Corruption
Description
This indicates an attack attempt to exploit a "Use After Free" vulnerability in multiple Mozilla Foundation Products.
The vulnerability is due to insufficient sanitizing of user supplied inputs. A remote attacker can exploit this to execute arbitrary code within the context of the application.
Affected Products
Mozilla Foundation Firefox prior to 3.6.20
Mozilla Foundation Firefox prior to 6
Mozilla Foundation SeaMonkey prior to 2.3
Mozilla Foundation Thunderbird prior to 3.1.12
Mozilla Foundation Thunderbird prior to 6
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www.mozilla.org/security/announce/2011/mfsa2011-29.html
http://www.mozilla.org/security/announce/2011/mfsa2011-30.html
http://www.mozilla.org/security/announce/2011/mfsa2011-31.html
http://www.mozilla.org/security/announce/2011/mfsa2011-32.html
http://www.mozilla.org/security/announce/2011/mfsa2011-33.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |