Unrated severityNVD Advisory· Published Dec 21, 2011· Updated Jun 16, 2026
CVE-2011-3658
CVE-2011-3658
Description
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:mozilla:firefox:8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:firefox:8.0:*:*:*:*:*:*:*
- (no CPE)range: =8.0
cpe:2.3:a:mozilla:seamonkey:2.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:seamonkey:2.5:*:*:*:*:*:*:*
- (no CPE)range: =2.5
cpe:2.3:a:mozilla:thunderbird:8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:thunderbird:8.0:*:*:*:*:*:*:*
- (no CPE)range: =8.0
- osv-coords3 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweed
< 128.5.1-1.1+ 2 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 50.1.0-1.1
- (no CPE)range: < 45.5.1-1.1
Patches
Vulnerability mechanics
References
20- www.mozilla.org/security/announce/2011/mfsa2011-55.htmlnvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.htmlnvd
- lists.opensuse.org/opensuse-updates/2012-03/msg00042.htmlnvd
- osvdb.org/77953nvd
- secunia.com/advisories/47302nvd
- secunia.com/advisories/47334nvd
- secunia.com/advisories/48495nvd
- secunia.com/advisories/48553nvd
- secunia.com/advisories/48823nvd
- secunia.com/advisories/49055nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/USN-1401-1nvd
- bugzilla.mozilla.org/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/71910nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14664nvd
News mentions
0No linked articles in our index yet.