Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets (CSS) token sequence.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2015-05-14T10:00:00
Updated: 2024-08-06T05:24:38.446Z
Reserved: 2015-03-25T00:00:00
Link: CVE-2015-2710
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-05-14T10:59:03.383
Modified: 2023-09-12T14:55:31.563
Link: CVE-2015-2710
Redhat