01642 06 11 11 Arrange Call

Use-after-free vulnerability in nsSVGPathSegList::ReplaceItem function in Mozilla Firefox, Thunderbird, and SeaMonkey allows remote attackers to cause denial of service or execute arbitrary code via user-supplied callback.

CVE-2011-0083 · HIGH

CVE-2011-0083

Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving a user-supplied callback.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.