HTTP: Mozilla SVG getCharNumAtPosition Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Mozilla Firefox. A successful attack can lead to arbitrary code execution.
Extended Description
Mozilla Firefox, Thunderbird, and SeaMonkey are prone to a remote code-execution vulnerability. The issue occurs when parsing specially malformed files and can be exploited to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. NOTE: This issue was previously discussed in BID 49166 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2011-29 through -30 Multiple Vulnerabilities) but has been given its own record to better document it.
Affected Products
Mozilla firefox
References
BugTraq: 49213
CVE: CVE-2011-0084
URL: http://www.mozilla.org/security/announce/2011/mfsa2011-29.html
Short Name
HTTP:STC:MOZILLA:SVG-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2011-0084 Code Execution Mozilla Remote SVG bid:49213 getCharNumAtPosition
Release Date
10/10/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Red_hat
Suse
Mozilla
Avaya
Ubuntu
Debian
CVSS Score
10.0