Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox prior to 38.0, Firefox ESR 31.x prior to 31.7, and Thunderbird prior to 31.7 allows remote malicious users to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets (CSS) token sequence.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla thunderbird |
||
mozilla firefox esr 31.1 |
||
mozilla firefox esr 31.3.0 |
||
mozilla firefox esr 31.1.1 |
||
mozilla firefox esr 31.5 |
||
mozilla firefox esr 31.6.0 |
||
mozilla firefox esr 31.3 |
||
mozilla firefox esr 31.5.3 |
||
mozilla firefox esr 31.5.1 |
||
mozilla firefox esr 31.1.0 |
||
mozilla firefox esr 31.2 |
||
mozilla firefox esr 31.4 |
||
mozilla firefox esr 31.0 |
||
mozilla firefox esr 31.5.2 |
||
novell suse linux enterprise server 12.0 |
||
novell suse linux enterprise desktop 12.0 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
novell suse linux enterprise software development kit 12.0 |
||
mozilla firefox |