Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD9D04936C-75F1-4A2C-9ADE-4C1708BE5DF9
HistoryNov 03, 2015 - 12:00 a.m.

mozilla -- multiple vulnerabilities

2015-11-0300:00:00
vuxml.freebsd.org
20

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.091 Low

EPSS

Percentile

94.5%

JSON

The Mozilla Project reports:

MFSA 2015-133 NSS and NSPR memory corruption issues
MFSA 2015-132 Mixed content WebSocket policy bypass
through workers
MFSA 2015-131 Vulnerabilities found through code
inspection
MFSA 2015-130 JavaScript garbage collection crash with
Java applet
MFSA 2015-129 Certain escaped characters in host of
Location-header are being treated as non-escaped
MFSA 2015-128 Memory corruption in libjar through zip
files
MFSA 2015-127 CORS preflight is bypassed when
non-standard Content-Type headers are received
MFSA 2015-126 Crash when accessing HTML tables with
accessibility tools on OS X
MFSA 2015-125 XSS attack through intents on Firefox for
Android
MFSA 2015-124 Android intents can be used on Firefox for
Android to open privileged files
MFSA 2015-123 Buffer overflow during image interactions
in canvas
MFSA 2015-122 Trailing whitespace in IP address hostnames
can bypass same-origin policy
MFSA 2015-121 Disabling scripts in Add-on SDK panels has
no effect
MFSA 2015-120 Reading sensitive profile files through
local HTML file on Android
MFSA 2015-119 Firefox for Android addressbar can be
removed after fullscreen mode
MFSA 2015-118 CSP bypass due to permissive Reader mode
whitelist
MFSA 2015-117 Information disclosure through NTLM
authentication
MFSA 2015-116 Miscellaneous memory safety hazards
(rv:42.0 / rv:38.4)

References

Related

ubuntu 3
openvas 58
nessus 44
suse 5
kaspersky 1
mageia 3
archlinux 2
debian 3
veracode 11
ibm 7
centos 4
redhat 5
oraclelinux 4
slackware 1
f5 2
mozilla 12
amazon 1
symantec 1
osv 2
ubuntucve 9
cve 10
prion 10
debiancve 1
ubuntu
ubuntu
Firefox vulnerabilities
2015-11-04 00:00:00
Thunderbird vulnerabilities
2015-12-01 00:00:00
NSS vulnerabilities
2015-11-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2785-1)
2015-11-05 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:1942-1)
2015-11-10 00:00:00
Mozilla Firefox Multiple Vulnerabilities (Nov 2015) - Mac OS X
2015-11-09 00:00:00
nessus
nessus
Firefox < 42 Multiple Vulnerabilities (Mac OS X)
2015-11-05 00:00:00
FreeBSD : mozilla -- multiple vulnerabilities (9d04936c-75f1-4a2c-9ade-4c1708be5df9)
2015-11-20 00:00:00
openSUSE Security Update : MozillaFirefox / mozilla-nspr / mozilla-nss / etc (openSUSE-2015-718)
2015-11-10 00:00:00
suse
suse
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss, xulrunner, seamonkey (important)
2015-11-09 23:10:09
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-06 17:11:17
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-12 20:10:40
kaspersky
kaspersky
KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-11-03 00:00:00
mageia
mageia
Updated iceape packages fix security vulnerabilities
2015-11-17 00:36:58
Updated firefox, nspr, nss packages fix security vulnerability
2015-11-04 21:03:05
Updated thunderbird packages fix security vulnerability
2015-11-28 02:11:20
archlinux
archlinux
firefox: multiple issues
2015-11-04 00:00:00
nss: arbitrary code execution
2015-11-06 00:00:00
debian
debian
[SECURITY] [DSA 3393-1] iceweasel security update
2015-11-04 18:41:55
[SECURITY] [DSA 3410-1] icedove security update
2015-12-01 22:21:09
[SECURITY] [DLA 354-1] nss security update
2015-11-29 16:36:27
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:43:40
Brute Force Attack
2019-05-02 05:43:40
Authentication Bypass
2019-05-02 05:43:38
ibm
ibm
Security Bulletin: Vulnerability in libxml, openssh, PAM, Firefox, affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance
2018-06-17 22:30:14
Security Bulletin: IBM Security Access Manager for Web is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)
2018-06-16 21:38:59
Security Bulletin: IBM Security Access Manager for Mobile is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)
2018-06-16 21:38:59
centos
centos
firefox security update
2015-11-04 15:58:03
thunderbird security update
2015-11-27 06:41:12
nspr, nss security update
2015-11-04 11:34:51
redhat
redhat
(RHSA-2015:1982) Critical: firefox security update
2015-11-04 00:00:00
(RHSA-2015:2519) Important: thunderbird security update
2015-11-26 00:00:00
(RHSA-2015:2068) Critical: nss, nss-util, and nspr security update
2015-11-18 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2015-11-27 00:00:00
firefox security update
2015-11-04 00:00:00
nss and nspr security update
2015-11-04 00:00:00
slackware
slackware
[slackware-security] mozilla-nss
2015-11-06 17:08:58
f5
f5
SOL31372672 - Mozilla NSS vulnerabilities CVE-2015-7181, CVE-2015-7182, and CVE-2015-7183
2015-12-09 00:00:00
K31372672 : Mozilla NSS vulnerabilities CVE-2015-7181, CVE-2015-7182, and CVE-2015-7183
2015-12-09 00:00:00
mozilla
mozilla
Vulnerabilities found through code inspection — Mozilla
2015-11-03 00:00:00
NSS and NSPR memory corruption issues — Mozilla
2015-11-03 00:00:00
Miscellaneous memory safety hazards (rv:42.0 / rv:38.4) — Mozilla
2015-11-03 00:00:00
amazon
amazon
Critical: nspr, nss-util, nss, jss
2015-11-05 01:58:00
symantec
symantec
SA119 : Multiple NSS Vulnerabilities
2016-03-22 08:00:00
osv
osv
nss - security update
2015-11-29 00:00:00
nspr - security update
2015-11-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-7190
2015-11-05 00:00:00
CVE-2015-4518
2015-11-04 00:00:00
CVE-2015-7195
2015-11-04 00:00:00
cve
cve
CVE-2015-7190
2015-11-05 05:59:00
CVE-2015-7197
2015-11-05 05:59:00
CVE-2015-7194
2015-11-05 05:59:00
prion
prion
Design/Logic Flaw
2015-11-05 05:59:00
Memory corruption
2015-11-05 05:59:00
Buffer overflow
2015-11-05 05:59:00
debiancve
debiancve
CVE-2015-7181
2015-11-05 05:59:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.091 Low

EPSS

Percentile

94.5%

JSON
Related for 9D04936C-75F1-4A2C-9ADE-4C1708BE5DF9
ubuntu3openvas58nessus44suse5kaspersky1mageia3archlinux2debian3veracode11ibm7centos4redhat5oraclelinux4slackware1f52mozilla12amazon1symantec1osv2ubuntucve9cve10prion10debiancve1