CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1683 matches found

Tenable Nessus•added 2014/03/19 12:0 a.m.•36 views

Ubuntu 12.04 LTS / 12.10 / 13.10 : firefox vulnerabilities (USN-2150-1)

Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman, Christoph Diehl, Gregor Wagner, Gary Kwong, Luke Wagner, Rob Fletcher and Makoto Kato discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker...

10CVSS7.9AI score0.83228EPSS

Exploits20References17

RedHat Linux•added 2014/03/18 8:34 p.m.•2 views

Mozilla: Use-after-free in TypeObject (MFSA 2014-30)

Use-after-free vulnerability in the TypeObject class in the JavaScript engine in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to execute arbitrary code by triggering extensive memory consumption while garbage...

10CVSS7.3AI score0.30632EPSS

Exploits1References5

UbuntuCve•added 2014/03/18 12:0 a.m.•36 views

CVE-2014-1512

10CVSS7.2AI score0.30632EPSS

Exploits1References4

Mozilla•added 2014/03/18 12:0 a.m.•43 views

Use-after-free in TypeObject — Mozilla

Security research firm VUPEN, via TippingPoint's Pwn2Own contest, reported that memory pressure during Garbage Collection could lead to memory corruption of TypeObjects in the JS engine, resulting in an exploitable use-after-free condition...

10CVSS9.2AI score0.30632EPSS

Exploits1References2Affected Software4

Check Point Advisories•added 2014/01/07 12:0 a.m.•2 views

Mozilla Firefox New Function Garbage Collection Code Execution - Ver2 (CVE-2006-3803)

A code execution vulnerability has been reported in Mozilla Firefox. A remote attacker could trigger this vulnerability by causing the garbage collector to delete a temporary variable while it is still being used during the creation of a new Function object. Successful exploitation of this...

5.1CVSS7.5AI score0.04121EPSS

Exploits0

RedHat Linux•added 2013/12/11 5:22 p.m.•2 views

Mozilla: Use-after-free during Table Editing (MFSA 2013-109)

Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user interface in the editor component in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code by...

10CVSS7.3AI score0.10214EPSS

Exploits2References5

NVD•added 2013/12/11 3:55 p.m.•17 views

CVE-2013-5618

10CVSS9.7AI score0.10214EPSS

Exploits2References21

Prion•added 2013/12/11 3:55 p.m.•20 views

Design/Logic Flaw

10CVSS8AI score0.10214EPSS

Exploits2References21Affected Software17

Cvelist•added 2013/12/11 3:0 p.m.•28 views

CVE-2013-5618

9.7AI score0.10214EPSS

Exploits2References21

RedHat Linux•added 2013/12/11 5:26 a.m.•1 views

Mozilla: Use-after-free during Table Editing (MFSA 2013-109)

10CVSS7.3AI score0.10214EPSS

Exploits2References5

UbuntuCve•added 2013/12/11 12:0 a.m.•24 views

CVE-2013-5618

10CVSS7.3AI score0.10214EPSS

Exploits2References4

Tenable Nessus•added 2013/12/11 12:0 a.m.•36 views

Thunderbird < 24.2 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird is earlier than 24.2 and is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist in the browser engine that could result in a denial of service or arbitrary code execution. CVE-2013-5609, CVE-2013-5610 - Two use-after-free...

10CVSS8.3AI score0.10871EPSS

Exploits11References19

Mozilla•added 2013/12/10 12:0 a.m.•50 views

Use-after-free during Table Editing — Mozilla

Security researcher Nils used the Address Sanitizer tool while fuzzing to discover a use-after-free problem in the table editing user interface of the editor during garbage collection. This leads to a potentially exploitable crash...

10CVSS2.1AI score0.10214EPSS

Exploits2References2Affected Software4

RedHat Linux•added 2013/10/30 4:28 p.m.•2 views

Mozilla: Miscellaneous use-after-free issues found through ASAN fuzzing (MFSA 2013-100)

Use-after-free vulnerability in the nsEventListenerManager::SetEventHandler function in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allows remote attackers to execute...

10CVSS6.7AI score0.05301EPSS

Exploits0References5

ATTACKERKB•added 2013/10/30 10:55 a.m.•0 views

CVE-2013-5601

10CVSS6.2AI score0.05301EPSS

Exploits0References12

Prion•added 2013/10/30 10:55 a.m.•21 views

Design/Logic Flaw

10CVSS7.9AI score0.05301EPSS

Exploits0References11Affected Software5

Cvelist•added 2013/10/30 10:0 a.m.•20 views

CVE-2013-5601

7.5AI score0.05301EPSS

Exploits0References11

RedHat Linux•added 2013/10/29 9:12 p.m.•1 views

Mozilla: Miscellaneous use-after-free issues found through ASAN fuzzing (MFSA 2013-100)

10CVSS6.7AI score0.05301EPSS

Exploits0References5

UbuntuCve•added 2013/10/29 12:0 a.m.•29 views

CVE-2013-5601

10CVSS6.7AI score0.05301EPSS

Exploits0References4

NVD•added 2013/09/18 10:8 a.m.•16 views

CVE-2013-1738

Use-after-free vulnerability in the JSGetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and...

9.3CVSS7.4AI score0.05908EPSS

Exploits0References14

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by