CVE-2024-57483

Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function...

Delta Electronics CNCSoft-G2 (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION : Low attack complexity Vendor : Delta Electronics Equipment : CNCSoft-G2 Vulnerabilities : Stack-based Buffer Overflow, Out-of-bounds Write, Out-of-bounds Read, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these...

stratisX Resource Management Error Vulnerability

stratisX is a cryptocurrency wallet program. A resource management error vulnerability exists in stratisX 2.0.0.5 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service...

stratisX Resource Management Error Vulnerability

stratisX is a cryptocurrency wallet program. A resource management error vulnerability exists in stratisX 2.0.0.5 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service...

about: blank windows

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting XSS attacks with chrome privileges via an addon that inserts a 1 javascript: or 2 data: link into an about:blank document loaded by chrome via a the...

XPCNativeWraper pollution using Script object — Mozilla

Mozilla security researcher mozbugra4 reported that it was possible to use the Script object to modify XPCNativeWrappers in such a way that subsequent access by the browser chrome--such as by right-clicking to open a context menu--can cause attacker-supplied javascript to run with the same...

CVE-2007-4041

Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote attackers to execute arbitrary commands via a NULL byte %00 and shell metacharacters in a 1 mailto, 2 nntp, 3 news, 4 snews, or 5 telnet URI, a similar issue to CVE-2007-3670...

CVE-2007-4038

Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, when running on systems with Thunderbird 1.5 installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which...

security flaw

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service crash via unspecified vectors that trigger memory corruption...

Mozilla Foundation Security Advisory 2007-22

Mozilla Foundation Security Advisory 2007-22 Title: File type confusion due to 00 in name Impact: Low Announced: July 17, 2007 Reporter: Ronald van den Heetkamp Products: Firefox Fixed in: Firefox 2.0.0.5 Description Ronald van den Heetkamp reported that a filename URL containing 00 encoded null...

CVE-2007-3738

CVE-2007-3738 : The initial entry notes multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allowing remote code execution through a crafted XPCNativeWrapper. Connected Nessus entries reference this CVE among SeaMonkey/Firefox-related advisories, but the provided documents do n...