Intrusion Prevention

Mozilla.Firefox.nsSVGValue.Out.of.Bounds.Memory.Corruption

Description

This indicates an attack attempt against a Memory Corruption vulnerability in several Mozilla products.
The vulnerability is due an error when handling interactions with certain event handler. It can be exploited by a remote attacker to execute arbitrary code on vulnerable systems.

Affected Products

Mozilla Thunderbird 8.0
Mozilla SeaMonkey 2.5
Mozilla Firefox 8.0.1
Mozilla Firefox 8.0
Mozilla Firefox 7

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version,available from the web site.
http://www.mozilla.com

CVE References

CVE-2011-3658