CVE-2009-2469

CVE-2009-2469 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Mozilla Firefox before 3.0.12 does not properly handle an SVG element that has a property with a watch function and an __defineSetter__ function, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted document, related to a certain pointer misinterpretation.

Learn more about our Web Application Penetration Testing UK.