CVE ID:	CVE-2011-0083
Description:	Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving a user-supplied callback.
Test IDs:	1.3.6.1.4.1.25623.1.0.69977   1.3.6.1.4.1.25623.1.0.69975   1.3.6.1.4.1.25623.1.0.69980
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0083 Debian Security Information: DSA-2268 (Google Search) http://www.debian.org/security/2011/dsa-2268 Debian Security Information: DSA-2269 (Google Search) http://www.debian.org/security/2011/dsa-2269 Debian Security Information: DSA-2273 (Google Search) http://www.debian.org/security/2011/dsa-2273 http://www.mandriva.com/security/advisories?name=MDVSA-2011:111 RedHat Security Advisories: RHSA-2011:0885 http://www.redhat.com/support/errata/RHSA-2011-0885.html RedHat Security Advisories: RHSA-2011:0886 http://www.redhat.com/support/errata/RHSA-2011-0886.html RedHat Security Advisories: RHSA-2011:0887 http://www.redhat.com/support/errata/RHSA-2011-0887.html RedHat Security Advisories: RHSA-2011:0888 http://www.redhat.com/support/errata/RHSA-2011-0888.html SuSE Security Announcement: SUSE-SA:2011:028 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00001.html http://www.ubuntu.com/usn/USN-1149-1 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:13543 http://secunia.com/advisories/45002

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: