Lucene search
K

81 matches found

BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.9 views

The vulnerability of the Graphite 2 rendering software allows a perpetrator to trigger a service failure or cause other adverse effects.

The vulnerability of the graphite2::TtfUtil::GetTableInfo function in the Graphite rendering software does not initialize memory for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects using a specially created Graphite sma...

6.8CVSS7.7AI score0.02278EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.6 views

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable12Lookup function TtfUtil.cpp for Firefox ESR and Firefox browsers can be exploited due to buffer overflows. Exploiting this vulnerability may allow an attacker to cause service interruptions or other effects by using a specially crafted...

6.8CVSS7.9AI score0.02278EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.9 views

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::FileFace::gettablefn function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, means that memory is not initialized for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service...

6.8CVSS7.7AI score0.02278EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.8 views

The vulnerability of Firefox ESR, the rendering software Graphite 2, and the email client Thunderbird, which allows a hacker to trigger a service failure

The vulnerability of the SillMap::readFace function in the Libgraphite component of the Firefox ESR browser and the Graphite 2 rendering software, as well as the Thunderbird email client, is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause a...

4.3CVSS7AI score0.02318EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.5 views

Vulnerabilities of Firefox ESR and Firefox browsers, the rendering software Graphite 2, and the email client Thunderbird, which allow a hacker to trigger a service failure, obtain confidential information, or execute arbitrary codes

The vulnerability of the directrun function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software and the Thunderbird email client, is caused by buffer overflows. Exploiting this vulnerability allows an attacker to execute arbitrary code, obtain confidential...

9.3CVSS8.1AI score0.04065EPSS
Exploits0References3Affected Software4
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.5 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart font,...

8.8CVSS7.5AI score0.02278EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.6 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font...

9.3CVSS7.7AI score0.04907EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.3 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

8.8CVSS7.5AI score0.02718EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.5 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The graphite2::FileFace::gettablefn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other...

8.8CVSS7.5AI score0.02278EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.5 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown othe...

8.8CVSS7.5AI score0.02278EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.8 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The Machine::Code::decoder::analysis::setref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a crafted Graphite smart font...

8.8CVSS7.8AI score0.02923EPSS
Exploits0References5
OSV
OSV
added 2016/03/13 6:59 p.m.2 views

DEBIAN-CVE-2016-2799

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font...

8.8CVSS9.2AI score0.04907EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.1 views

DEBIAN-CVE-2016-2797

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

8.8CVSS9AI score0.02718EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.1 views

DEBIAN-CVE-2016-2795

The graphite2::FileFace::gettablefn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other...

8.8CVSS8.5AI score0.02278EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.2 views

DEBIAN-CVE-2016-2794

The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite...

8.8CVSS8.8AI score0.03479EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.1 views

DEBIAN-CVE-2016-2791

The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart font...

8.8CVSS8.8AI score0.02278EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.2 views

DEBIAN-CVE-2016-2790

The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown othe...

8.8CVSS8.8AI score0.02278EPSS
Exploits0References1
OSV
OSV
added 2016/03/13 6:59 p.m.1 views

DEBIAN-CVE-2016-1977

The Machine::Code::decoder::analysis::setref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a crafted Graphite smart font...

8.8CVSS8.8AI score0.02923EPSS
Exploits0References1
CNVD
CNVD
added 2016/03/13 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Graphite 2 code execution vulnerability (CNVD-2016-01595)

Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A security vulnerability exists in Mozilla Firefox and Firefox ESR...

9.3CVSS9.1AI score0.03479EPSS
Exploits0References1
CNVD
CNVD
added 2016/03/13 12:0 a.m.3 views

Mozilla Firefox and Firefox ESR Graphite 2 code execution vulnerability (CNVD-2016-01596)

Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A security vulnerability exists in Mozilla Firefox and Firefox ESR...

8.8CVSS9.1AI score0.02718EPSS
Exploits0References1
Rows per page
Query Builder