Lucene search
K

54 matches found

OSV
OSV
added 2020/04/24 4:15 p.m.1 views

CVE-2020-6826

Mozilla developers Tyson Smith, Bob Clary, and Alexandru Michis reported memory safety bugs present in Firefox 74. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affec...

9.8CVSS7.5AI score0.01242EPSS
Exploits0References2
Wired Threat Level
Wired Threat Level
added 2019/11/06 2:0 p.m.29 views

Scammers Are Exploiting a Firefox Bug to Freeze Your Browser

Fraudulent tech-support sites are causing the browser to lock up and display a disturbing message. Force quitting is the only way out...

3.1AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2019/06/18 12:0 a.m.7 views

VulnCheck KEV: CVE-2019-11707

Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash...

8.8CVSS7AI score0.37951EPSS
Exploits7References1
Malwarebytes
Malwarebytes
added 2018/10/26 3:0 p.m.189 views

Scammers use old browser trick to create fake virus download

Tech support scammers are reusing an old technique in their existing browser locker browlock schemes to force a special kind of file download. Contrary to past attacks, where the purpose was to flood the machine with a large amount of file requests in order to crash the browser, this one is purel...

7.1AI score
Exploits0
OSV
OSV
added 2018/06/11 9:29 p.m.3 views

DEBIAN-CVE-2016-5290

Memory safety bugs were reported in Firefox 49 and Firefox ESR 45.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird 45.5, Firefox ESR 45.5, and Firef...

9.8CVSS9.5AI score0.0322EPSS
Exploits0References1
0day.today
0day.today
added 2017/11/05 12:0 a.m.19 views

Tor Browser 7.0.8 IP Address Leak Vulnerability

TorBrowser versions 7.0.8 and below for Mac OS X and Linux are affected by a critical security issue. According to the Tor Project, further details will be released in the near future. Due to a Firefox bug in handling file:// URLs it is possible on both systems that users leak their IP address...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2017/11/04 7:0 a.m.12 views

Tor Browser Users Urged to Patch Critical ‘TorMoil’ Vulnerability

The Tor Project released a patch for a vulnerability that leaks the real IP addresses of macOS and Linux users of its Tor Browser. The patch was issued late Friday and fixes a vulnerability found in Tor Browser version 7.0.8. The patch is in an upgrade to Tor Browser 7.0.9. Windows users running...

7.3AI score
Exploits0References5
OSV
OSV
added 2017/06/14 12:0 a.m.4 views

UBUNTU-CVE-2017-7776

Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph...

8.1CVSS7.3AI score0.02767EPSS
Exploits1References6
myhack58
myhack58
added 2015/09/07 12:0 a.m.20 views

Hacked the Mozilla Bug Tracking System Library use undisclosed vulnerabilities to attack users-vulnerability warning-the black bar safety net

Hacks from the Mozilla Bug Tracking System Bugzilla successfully steal sensitive vulnerability information, and the use of undisclosed vulnerabilities to attack Firefox users. 1 8 5 not disclosed vulnerability is accessed Mozilla company in the official blog post on the hacking case, and pointed...

3.4AI score
Exploits0
ThreatPost
ThreatPost
added 2015/02/02 2:44 p.m.15 views

Google Offers Bug Bounty Vulnerability Research Grants

Google last week announced that it has instituted a program for 2015 in which researchers can receive up to 3,133.70 in grant money for bug hunting. Researchers must apply for the grants, which will be an up-front award that will be paid out before a bug is submitted, Google said. “Researchers’...

0.2AI score
Exploits0References2
OSV
OSV
added 2014/10/14 12:0 a.m.6 views

UBUNTU-CVE-2014-1578

The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...

7.5CVSS7.2AI score0.03944EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2010/08/20 5:18 p.m.9 views

This Week in Security: Phantom Firefox Menace, Mass Domain Ownage and The Curious Case of IE6

There’s old, and there’s old. Internet Explorer 6 clearly falls into the latter category, but despite its advancing age, IE6 still holds a lot of sway in the enterprise, as new data that came to light this week. That’s not the only weirdness that reared its head this week, though. There was the...

6.9AI score
Exploits0References9
RedHat Linux
RedHat Linux
added 2008/03/27 11:0 p.m.7 views

Referrer spoofing bug

Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypass application protection mechanisms that rely ...

5CVSS7.4AI score0.02443EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2007/03/14 5:2 a.m.6 views

security flaw

The 1 Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier; and the 2 Passcard Manager in Netscape 8.1.2 and possibly other versions, do not properly verify that an ACTION URL in a FORM element containing a password INPUT element matches the web site for which the user stored a...

5CVSS7.3AI score0.0196EPSS
Exploits1References4
Rows per page
Query Builder