Lucene search
+L

77 matches found

Veracode
Veracode
added 2019/05/02 4:43 a.m.36 views

Bypass Policy

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.3CVSS9.8AI score0.42609EPSS
Exploits5References23Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/10/12 12:0 a.m.32 views

Foxit Reader < 9.3 Multiple Vulnerabilities

The version of Foxit Reader installed on the remote Windows host is prior to 9.3. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid118093; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate",...

8.8CVSS7.2AI score0.09482EPSS
Exploits15References32
CVE
CVE
added 2018/10/08 4:0 p.m.64 views

CVE-2018-3992

CVE-2018-3992 is a use-after-free vulnerability in Foxit PDF Reader’s JavaScript engine (version 9.2.0.9297). A specially crafted PDF can reuse a freed memory object, leading to arbitrary code execution. Exploitation requires user action to open the malicious file; if the browser plugin extension...

8.8CVSS8.3AI score0.02848EPSS
Exploits1References3Affected Software2
Check Point Advisories
Check Point Advisories
added 2018/10/02 12:0 a.m.90 views

Foxit Reader and PhantomPDF Multiple Use After Free Vulnerabilities (CVE-2018-3940; CVE-2018-3941; CVE-2018-3942; CVE-2018-3943; CVE-2018-3944; CVE-2018-3945; CVE-2018-3946)

A remote code execution vulnerability exists in Foxit Reader and PhantomPDF. The vulnerability is due to a use-after-free error while handling a specially crafted PDF file. Successful exploitation could lead to arbitrary code execution. Additional CVEs: CVE-2018-3957, CVE-2018-3958, CVE-2018-3959...

6.8CVSS8.6AI score0.09482EPSS
Exploits15
CVE
CVE
added 2018/03/16 2:4 p.m.25 views

CVE-2017-3992

CVE-2017-3992 entry is rejected/not used; does not represent an active vulnerability entry.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.9 views

CVE-2017-3992

...

Exploits0
CVE
CVE
added 2017/05/11 2:1 p.m.27 views

CVE-2009-3992

CVE-2009-3992 is rejected/not used and does not represent an active vulnerability entry.

7.4AI score
Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.10 views

CVE-2009-3992

...

Exploits0
NVD
NVD
added 2016/07/26 5:59 p.m.24 views

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

6.2CVSS6.2AI score0.0035EPSS
Exploits0References4
OSV
OSV
added 2016/07/26 5:59 p.m.7 views

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

6.2CVSS6.5AI score
Exploits0References4
CVE
CVE
added 2016/07/26 5:0 p.m.61 views

CVE-2016-3992

CVE-2016-3992 affects cronic prior to version 3, enabling local users to write arbitrary files via a symlink attack against cronic.out.$$, cronic.err.$$, or cronic.trace.$$ in /tmp. Root cause: symlink manipulation in temporary files. Practical impact: local privilege or data tampering risk with ...

6.2CVSS6.1AI score0.0035EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2016/07/26 5:0 p.m.26 views

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

6.2AI score0.0035EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/07/06 12:0 a.m.23 views

openSUSE Security Update : cronic (openSUSE-2016-832)

cronic was updated to fix one security issue. This security issue was fixed : - CVE-2016-3992: Predictable temporary files bsc974845. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

6.2CVSS6.3AI score0.0035EPSS
Exploits0References2
CVE
CVE
added 2014/07/11 2:0 p.m.78 views

CVE-2014-3992

CVE-2014-3992 corresponds to multiple SQL injection vulnerabilities in Dolibarr ERP/CRM 3.5.3, exploitable by remote authenticated users via the entity parameter in user/fiche.php or the sortorder parameter in user/group/index.php. The issue allows arbitrary SQL execution within the application's...

6.5CVSS8.3AI score0.01994EPSS
Exploits3References1Affected Software1
Circl
Circl
added 2014/07/08 12:0 a.m.6 views

CVE-2014-3992

creationtimestamp| type| source ---|---|--- 2014-07-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34007...

6.5CVSS5.8AI score0.01994EPSS
Exploits3References1
CVE
CVE
added 2013/08/05 8:0 p.m.46 views

CVE-2013-3992

CVE-2013-3992 is an CSRF vulnerability in IBM InfoSphere BigInsights 2.0–2.1. The IBM advisory lists affected platforms as BigInsights v1.1–2.1 (Linux shown) and provides remediation via the 2.1 Fix Pack (2.1.0.1). Other fixes include contacting support for older versions (1.1–2.0). The vulnerabi...

6CVSS6.7AI score0.00579EPSS
Exploits0References6Affected Software1
OpenVAS
OpenVAS
added 2012/12/13 12:0 a.m.44 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2012:1345-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.4AI score0.147EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linux
added 2012/10/15 3:8 p.m.63 views

MozillaFirefox: update to Firefox 16.0.1 (important)

The Mozilla suite received following security updates bnc783533: Mozilla Firefox was updated to 16.0.1. Mozilla Seamonkey was updated to 2.13.1. Mozilla Thunderbird was updated to 16.0.1. Mozilla XULRunner was updated to 16.0.1. MFSA 2012-88/CVE-2012-4191 bmo798045 Miscellaneous memory safety...

10CVSS1.1AI score0.42609EPSS
Exploits8References1
OpenVAS
OpenVAS
added 2012/10/15 12:0 a.m.42 views

Mozilla Thunderbird Multiple Vulnerabilities-01 (Windows)

The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillathunderbirdmultvuln01oct12win.nasl 6086 2017-05-09 09:03:30Z teissa $ Mozilla Thunderbird Multiple Vulnerabilities-01 Windows Authors: Arun Kallavi Copyright: Copyrigh...

10CVSS0.6AI score0.42609EPSS
Exploits6References12
OpenVAS
OpenVAS
added 2012/10/15 12:0 a.m.61 views

Mozilla Firefox ESR Multiple Vulnerabilities-01 (Windows)

The host is installed with Mozilla firefox ESR and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxesrmultvuln01oct12win.nasl 6115 2017-05-12 09:03:25Z teissa $ Mozilla Firefox ESR Multiple Vulnerabilities-01 Windows Authors: Arun Kallavi Copyright: Copyright...

10CVSS0.7AI score0.42609EPSS
Exploits6References12
Rows per page
Query Builder