CVE-2009-2469

Description

Mozilla Firefox before 3.0.12 does not properly handle an SVG element that has a property with a watch function and an __defineSetter__ function, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted document, related to a certain pointer misinterpretation.

Related Vulnerabilities

platform vulnerability
CVE-2009-2469 xulrunner
CVE-2009-2469