Firefox 3.5 3.0.14 JavaScript engine crashes

Unspecified vulnerability in the JavaScript engine in Mozilla Firefox before 3.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

Stable Update: Security fixes

Google Chrome 2.0.172.43 has been released to the Stable channel to fix the security issues listed below. CVE-2009- 2935 Unauthorized memory read from Javascript A flaw in the V8 Javascript engine might allow specially-crafted Javascript on a web page to read unauthorized memory, bypassing securi...

Mandrake Security Advisory MDVSA-2009:185 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:185. OpenVAS Vulnerability Test $Id: mdksa2009185.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:185 firefox Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:182 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:182. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

CVE-2009-2664

CVE-2009-2664 concerns Mozilla Firefox's JavaScript engine: the function js_watch_set in jsdbgapi.cpp has a memory-safety bug that could allow a remote attacker to cause an assertion failure or potentially execute arbitrary code via a crafted .js file, leading to a denial of service or more serio...

Mandriva Linux Security Advisory : firefox (MDVSA-2009:182)

Security vulnerabilities have been discovered and corrected in Mozilla Firefox 3.0.x : Several flaws were discovered in the Firefox browser and JavaScript engines, which could allow a malicious website to cause a denial of service or possibly execute arbitrary code with user privileges...

Debian Security Advisory DSA 1840-1 (xulrunner)

The remote host is missing an update to xulrunner announced via advisory DSA 1840-1. OpenVAS Vulnerability Test $Id: deb18401.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1840-1 xulrunner Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Ubuntu: Security Advisory (USN-798-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-1840-1 xulrunner - several vulnerabilities

Bulletin has no description...

Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-798-1)

Several flaws were discovered in the Firefox browser and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2009-2462,...

CVE-2009-2466

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 nsDOMClassInfo.cpp, 2 JSHashTableRawLookup, and 3 MirrorWrappedNativePare...

CVE-2009-2466

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 nsDOMClassInfo.cpp, 2 JSHashTableRawLookup, and 3 MirrorWrappedNativePare...

Mozilla JavaScript engine crashes

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 nsDOMClassInfo.cpp, 2 JSHashTableRawLookup, and 3 MirrorWrappedNativePare...

Mozilla JavaScript engine crashes

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 nsDOMClassInfo.cpp, 2 JSHashTableRawLookup, and 3 MirrorWrappedNativePare...

CVE-2009-2466

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 nsDOMClassInfo.cpp, 2 JSHashTableRawLookup, and 3 MirrorWrappedNativePare...

openSUSE Security Update : acroread (acroread-295)

The acroread package was update to fix several security vulnerabilities in the JavaScript engine. CVE-2008-2992, CVE-2008-2549, CVE-2008-4812, CVE-2008-4813, CVE-2008-4817, CVE-2008-4816, CVE-2008-4814, CVE-2008-4815 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

openSUSE Security Update : acroread (acroread-689)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

openSUSE Security Update : acroread (acroread-689)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

Mitigating That Critical Firefox 3.5 Vulnerability

Earlier this week, I wrote about a “highly critical” — and unpatched — vulnerability that puts millions of Web surfers at risk of malicious hacker attacks. Since then, there has been word that the release of the vulnerability and exploit was “self-inflicted” Mozilla exposed the bug themselves and...

Mozilla Firefox 3.5 TraceMonkey JavaScript engine uninitialized memory vulnerability

Overview Mozilla Firefox's javascript engine contains a vulnerability that may allow an attacker to execute code. Description Mozilla Firefox version 3.5 contains a vulnerability in the TraceMonkey components of Firefox's JavaScript engine.Per Mozilla Bug Bug 503286: "This is a JS engine bug...