CVE-2010-0162
Description
Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly support the application/octet-stream content type as a protection mechanism against execution of web script in certain circumstances involving SVG and the EMBED element, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via an embedded SVG document.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Mozilla Firefox and SeaMonkey mishandle application/octet-stream with SVG and EMBED, enabling Same Origin Policy bypass and cross-site scripting.
Vulnerability
Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and SeaMonkey before 2.0.3 do not properly enforce the application/octet-stream content type as a protection against script execution when an SVG document is embedded via the ` element. This allows an attacker to inject arbitrary web script into the context of a different origin, bypassing the Same Origin Policy [4]. The vulnerability is triggered when a server returns an SVG document with the Content-Type: application/octet-stream header and the document is loaded inside an ` element on a page from a different origin.
Exploitation
An attacker needs only to host a malicious SVG document on a server that returns it with the application/octet-stream content type. The attacker then crafts a web page that embeds this SVG document using the `` element. When a victim visits the attacker's page, the browser loads the SVG and executes any embedded JavaScript within the context of the attacker's origin, but the script can then access the DOM of the embedding page if the Same Origin Policy is not properly enforced. No user interaction beyond visiting the page is required [4].
Impact
Successful exploitation allows a remote attacker to perform cross-site scripting (XSS) attacks against the victim's browser session. The attacker can read and modify data from any website that the victim has open, steal cookies, or perform actions on behalf of the victim. The impact is limited to the privileges of the user running the browser, but it can lead to full compromise of the user's web accounts and data [1][2].
Mitigation
Mozilla released fixed versions: Firefox 3.0.18, Firefox 3.5.8, and SeaMonkey 2.0.3. Ubuntu users received updates via USN-896-1 (for Firefox 3.5) and USN-895-1 (for Firefox 3.0) on 17 February 2010 [1][2]. Red Hat also provided fixes in RHSA-2010-0112 [3]. Users should upgrade to the patched versions immediately. No workaround is available other than disabling JavaScript or avoiding untrusted SVG content.
- USN-896-1: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities | Ubuntu security notices | Ubuntu
- USN-895-1: Firefox 3.0 and Xulrunner 1.9 vulnerabilities | Ubuntu security notices | Ubuntu
- Support
- 455472 - (CVE-2010-0162) [FIX]code injection with Content-Type: application/octet-stream, embed and svg - no plugins required
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
69cpe:2.3:a:mozilla:firefox:3.0:*:*:*:*:*:*:*+ 28 more
- cpe:2.3:a:mozilla:firefox:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.17:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0:alpha:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:3.5.7:*:*:*:*:*:*:*
- (no CPE)range: 3.0.x before 3.0.18, 3.5.x before 3.5.8
cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*+ 39 more
- cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*
- (no CPE)range: before 2.0.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- secunia.com/advisories/37242nvdVendor Advisory
- www.mozilla.org/security/announce/2010/mfsa2010-05.htmlnvdVendor Advisory
- www.vupen.com/english/advisories/2010/0405nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.htmlnvd
- secunia.com/advisories/38847nvd
- www.debian.org/security/2010/dsa-1999nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2010-0112.htmlnvd
- www.ubuntu.com/usn/USN-895-1nvd
- www.ubuntu.com/usn/USN-896-1nvd
- bugzilla.mozilla.org/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/56363nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10697nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8631nvd
News mentions
0No linked articles in our index yet.