Intrusion Prevention



This indicates an attack attempt to exploit a memory corruption vulnerability
in Mozilla Foundation's family of browser products.
The vulnerability is caused by an error when the vulnerable software handles the document appended with an SVG comment DOM node. It may allow remote attackers to execute arbitrary code in the context of the application. Failed exploit attempts will likely cause the program to crash, resulting in a denial of service condition.

Affected Products

Mozilla Firefox versions prior to
Mozilla Firefox versions prior to
Mozilla Thunderbird versions prior to
Mozilla SeaMonkey versions prior to 1.0.7


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade Mozilla Firefox
Upgrade Mozilla Thunderbird
Upgrade Mozilla SeaMonkey

CVE References