CVE-2011-0084 — Code Injection in Mozilla Firefox

CWE-94 — Code Injection10 documents6 sources

Severity

10.0CRITICALNVD

EPSS

5.5%

top 9.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird

Timeline

PublishedAug 18

Latest updateMay 17

Description

The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox before 3.6.20, and 4.x through 5; Thunderbird 3.x before 3.1.12 and other versions before 6; SeaMonkey 2.x before 2.3; and possibly other products does not properly handle SVG text, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/firefox3.6.19+109

▶NVDmozilla/seamonkey16 versions+15

▶NVDmozilla/thunderbird24 versions+23

🔴Vulnerability Details

GHSA

GHSA-ppw5-9xh7-rwjf: The SVGTextElement↗2022-05-17

▶

CVEList

CVE-2011-0084: The SVGTextElement↗2011-08-18

▶

📋Vendor Advisories

Ubuntu

Libvoikko regression↗2011-10-19

▶

Ubuntu

Thunderbird vulnerabilities↗2011-08-26

▶

Ubuntu

Firefox and Xulrunner vulnerabilities↗2011-08-19

▶

Ubuntu

Firefox vulnerabilities↗2011-08-17

▶

Ubuntu

Mozvoikko update↗2011-08-17

▶

💬Community

Bugzilla

CVE-2011-0084 Mozilla: Crash in SVGTextElement.getCharNumAtPosition()↗2011-08-14

▶