Lucene search
Gentoo FoundationMGASA-2015-0305HistoryAug 07, 2015 - 10:20 p.m.
Updated firefox package fixes CVE-2015-4495
2015-08-0722:20:18
Gentoo Foundation
advisories.mageia.org
14
0.965 High
EPSS
Percentile
99.6%
Updated firefox packages fix security vulnerability: Security researcher Cody Crews reported on a way to violate the same origin policy and inject script into a non-privileged part of the built-in PDF Viewer in Firefox. This would allow an attacker to read and steal sensitive local files on the victim’s computer (CVE-2015-4495).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 4 | noarch | firefox | < 38.1.1-1 | firefox-38.1.1-1.mga4 |
| Mageia | 4 | noarch | firefox-l10n | < 38.1.1-1 | firefox-l10n-38.1.1-1.mga4 |
| Mageia | 5 | noarch | firefox | < 38.1.1-1 | firefox-38.1.1-1.mga5 |
| Mageia | 5 | noarch | firefox-l10n | < 38.1.1-1 | firefox-l10n-38.1.1-1.mga5 |
Related
nessus
nessus
SUSE SLED11 / SLES11 Security Update : MozillaFirefox (SUSE-SU-2015:1380-1)
2015-08-14 00:00:00
Ubuntu 14.04 LTS : Firefox vulnerability (USN-2707-1)
2015-08-10 00:00:00
Firefox < 39.0.3 PDF Reader Arbitrary File Access (Mac OS X)
2015-08-07 00:00:00
oraclelinux
oraclelinux
firefox security update
2015-08-08 00:00:00
kaspersky
kaspersky
mozilla
mozilla
Same origin violation and local file stealing via PDF reader — Mozilla
2015-08-06 00:00:00
openvas
openvas
Mozilla Firefox Security Bypass Vulnerability (Aug 2015) - Windows
2015-08-10 00:00:00
CentOS Update for firefox CESA-2015:1581 centos6
2015-08-09 00:00:00
Mozilla Firefox ESR Security Bypass Vulnerability (Aug 2015) - Windows
2015-08-10 00:00:00
centos
centos
firefox security update
2015-08-08 08:45:36
attackerkb
attackerkb
CVE-2015-4495
2015-08-08 00:00:00
canvas
canvas
Immunity Canvas: FIREFOX_PDFJS_FILEREADER
2015-08-08 00:59:00
exploitpack
exploitpack
Mozilla Firefox 39.03 - pdf.js Same Origin Policy
2015-08-15 00:00:00
cisa_kev
cisa_kev
Mozilla Firefox Security Feature Bypass Vulnerability
2022-05-25 00:00:00
debiancve
debiancve
CVE-2015-4495
2015-08-08 00:59:00
cvelist
cvelist
CVE-2015-4495
2015-08-08 00:00:00
archlinux
archlinux
firefox: local file stealing via PDF reader
2015-08-07 00:00:00
prion
prion
Design/Logic Flaw
2015-08-08 00:59:00
ubuntu
ubuntu
Firefox vulnerability
2015-08-07 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-08-06 00:00:00
suse
suse
Security update for MozillaFirefox (critical)
2015-08-13 16:09:37
Security update for MozillaFirefox (critical)
2015-08-13 17:09:59
Security update for MozillaFirefox, mozilla-nss (important)
2015-09-10 17:10:07
veracode
veracode
Same-Origin Policy Bypass
2019-01-15 09:07:09
cve
cve
CVE-2015-4495
2015-08-08 00:59:00
zdt
zdt
Firefox 39.03 - pdf.js Same Origin Policy Exploit
2015-08-15 00:00:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Firefox < 39.0.3 - pdf.js Same Origin Policy Exploit
2015-09-01 00:00:00
ubuntucve
ubuntucve
CVE-2015-4495
2015-08-07 00:00:00
redhat
redhat
(RHSA-2015:1581) Important: firefox security update
2015-08-07 00:00:00
exploitdb
exploitdb
Mozilla Firefox < 39.03 - 'pdf.js' Same Origin Policy
2015-08-15 00:00:00
ibm
ibm
securityvulns
securityvulns
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-12-30 00:00:00