12 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-5863
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In an ioctl handler in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, several sanity checks are missing which can lead to...
SUSE CVE-2014-1507
Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS before 1.2.2 allows attackers to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageFile object...
SUSE CVE-2015-4488
Use-after-free vulnerability in the StyleAnimationValue class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 allows remote attackers to have an unspecified impact by leveraging a StyleAnimationValue::operator self assignment...
The vulnerability of the ioctl() function in the QBT1000 driver in Android operating systems, for MSM, Firefox OS for MSM, QRD Android, and Android from the CAF repository, allows a hacker to trigger buffer overflows.
The vulnerability of the ioctl function in QBT1000 drivers in Android operating systems, for MSM, Firefox OS for MSM, QRD Android, and Android from the CAF repository, is related to deficiencies in buffer size checking. Exploiting this vulnerability can allow a local attacker to trigger buffer...
Memory misreference vulnerability in multiple Mozilla products (CNVD-2017-07056)
Mozilla Firefox, Firefox ESR, and Firefox OS are all developed by the Mozilla Foundation in the U.S. Firefox is an open-source web browser; Firefox ESR is an extended-support version of Firefox; and Firefox OS is a set of mobile operating systems based on the Linux kernel and used in smartphones...
Mozilla Firefox OS lockscreen Competitive Conditions Vulnerability
Mozilla Firefox is an open source web browser that uses the Gecko engine. A competitive condition vulnerability exists in the lockscreen feature of Mozilla Firefox OS prior to version 2.5, which can be exploited by an attacker in close physical proximity to bypass targeted cryptographic measures...
The vulnerability of the Firefox OS operating system, as well as the Firefox and Firefox ESR browsers, allows attackers to circumvent access restrictions, read arbitrary files, and increase their privileges.
The vulnerability of the PDF reader component in the Firefox OS operating system, as well as in Firefox and Firefox ESR browsers, is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass access controls, read arbitrary files, and...
The vulnerability of the Firefox OS operating system allows a hacker to trigger a service failure.
The vulnerability of the SharedBufferManagerParent::RecvAllocateGrallocBuffer function in the Firefox OS operating system is related to buffer overflows caused by integer overflows. Exploiting this vulnerability could allow a malicious actor to cause service failures by setting the buffer size...
The vulnerability of the Firefox OS operating system allows a hacker to inject arbitrary HTML code.
The vulnerability of the Gaia Search app for the Firefox OS operating system exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code by manipulating the title and search engine field of...
The vulnerabilities in browsers Firefox, Firefox ESR, and the operating system Firefox OS allow attackers to trigger service interruptions or exert other effects on the system.
The vulnerability of the nsTArrayImpl class in Firefox browsers, Firefox ESR, and the Firefox OS operating system is caused by buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or otherwise affect the system...
UBUNTU-CVE-2015-4488
Use-after-free vulnerability in the StyleAnimationValue class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 allows remote attackers to have an unspecified impact by leveraging a StyleAnimationValue::operator self assignment...
Mozilla Firefox OS Cross-Site Scripting Vulnerability (CNVD-2015-05193)
Firefox OS is an open source mobile operating system with a Linux kernel for smartphones. Mozilla Firefox OS versions prior to 2.2, Gaia's Search application suffers from multiple cross-site scripting vulnerabilities in its implementation. A remote attacker could exploit these vulnerabilities to...