Microsoft Edge DOMAttrModified Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of t...

Microsoft Internet Explorer - MSHTML!CSVGHelpers::SetAttributeStringAndPointer Use-After-Free (MS16-023)

k 10 ChildEBP RetAddr WARNING: Stack unwind information not available. Following frames may be wrong. 0bb14b64 6ad180b8 vrfcore!VerifierStopMessageEx+0x571 0bb14b88 67fec434 vrfcore!VerifierDisableVerifier+0x748 0bb14bdc 67fea3dc verifier67fe0000!VerifierStopMessage+0x74 0bb14c40 67fe733d...

Mandriva Linux Security Advisory : mozilla (MDVSA-2011:192)

Security issues were identified and fixed in mozilla firefox and thunderbird : The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service out-of-bounds...

Firefox DOMAttrModified nsSVGValue Observer Handling Out-of-bounds Memory Access

Added: 05/21/2012 CVE: CVE-2011-3658 BID: 51138 OSVDB: 77953 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access and possible remote code...

Firefox DOMAttrModified nsSVGValue Observer Handling Out-of-bounds Memory Access

Added: 05/21/2012 CVE: CVE-2011-3658 BID: 51138 OSVDB: 77953 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access and possible remote code...

Firefox DOMAttrModified nsSVGValue Observer Handling Out-of-bounds Memory Access

Added: 05/21/2012 CVE: CVE-2011-3658 BID: 51138 OSVDB: 77953 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access and possible remote code...

Ubuntu 10.04 LTS / 10.10 / 11.04 : thunderbird vulnerabilities (USN-1401-2)

USN-1401-1 fixed vulnerabilities in Xulrunner. This update provides the corresponding fixes for Thunderbird. It was discovered that a flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access if SVG elements were removed during a DOMAttrModified event handler. If the...

Ubuntu Update for thunderbird USN-1401-2

Ubuntu Update for Linux kernel vulnerabilities USN-1401-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN14012.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for thunderbird USN-1401-2 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net...

Ubuntu Update for xulrunner-1.9.2 USN-1401-1

Ubuntu Update for Linux kernel vulnerabilities USN-1401-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14011.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for xulrunner-1.9.2 USN-1401-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

Ubuntu 11.04 / 11.10 : mozvoikko, ubufox update (USN-1306-2)

USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longs...

Ubuntu: Security Advisory (USN-1306-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1306-2: Mozvoikko and ubufox update

USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Original advisory details: Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman,...

Mozilla Products DOMAttrModified Memory Corruption Vulnerability (MAC OS X)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to out of bounds memory corruption vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsdomattrmodifiedmemcrptnvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Mozilla Products DOMAttrModified Memory...

Mozilla Products DOMAttrModified Memory Corruption Vulnerability (Windows)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to out of bounds memory corruption vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsdomattrmodifiedmemcrptnvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Mozilla Products DOMAttrModified Memory Corrupti...

Mozilla Products DOMAttrModified Memory Corruption Vulnerability - Windows

Mozilla Firefox/Thunderbird/Seamonkey is prone to out of bounds memory corruption vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Out-of-bounds

The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service out-of-bounds memory access or possibly have unspecified other impact via vectors involving...

CVE-2011-3658

The CVE-2011-3658 issue affects Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5, where the SVG implementation mishandles DOMAttrModified interactions, leading to out-of-bounds memory access when removing SVG elements. This can enable a remote attacker to cause a denial of service or poten...

Mozilla Firefox 8.0 Multiple Vulnerabilities

Binary data 801379.prm...

nsSVGValue out-of-bounds access — Mozilla

Security researcher regenrecht reported via TippingPoint's Zero Day Initiative that a flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access if SVG elements were removed during a DOMAttrModified event handler...

CVE-2011-3658

The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service out-of-bounds memory access or possibly have unspecified other impact via vectors involving...