Debian DSA-1830-1 : icedove - several vulnerabilities

Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0040 The execution of arbitrary code might be possible via a crafted...

Debian DSA-1885-1 : xulrunner - several vulnerabilities

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3070 Jesse Ruderman discovered crashes in the layout...

Motorola Milestone (Droid) Smartphone Denial Of Service

MajorSecurity Advisory 65Motorola Milestone Smartphone Denial of Service Details ============ Product: Motorola MilestoneDroid Smartphone Security-Risk: low Remote-Exploit: yes Vendor-URL: http://www.motorola.com/ Vendor-Status: informed Advisory-Status: published on 02-02-2010 Credits ==========...

Mozilla Firefox

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...

Mozilla Firefox

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...

Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-873-1)

Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and David James discovered several flaws in the browser and JavaScript engines of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary...

CVE-2009-3982

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

Memory corruption

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

CVE-2009-3982

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

USN-853-2: Firefox and Xulrunner regression

USN-853-1 fixed vulnerabilities in Firefox and Xulrunner. The upstream changes introduced regressions that could lead to crashes when processing certain malformed GIF images, fonts and web pages. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Alin Ra...

Mozilla Firefox多个内存破坏漏洞

BUGTRAQ ID: 36872,36871,36870,36866,36869,36873,36875 CVE ID: CVE-2009-3377,CVE-2009-3378,CVE-2009-3379,CVE-2009-3380,CVE-2009-3381,CVE-2009-3382,CVE-2009-3383 Firefox是一款流行的开源WEB浏览器。...

Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : firefox-3.0, firefox-3.5, xulrunner-1.9, xulrunner-1.9.1 vulnerabilities (USN-853-1)

Alin Rad Pop discovered a heap-based buffer overflow in Firefox when it converted strings to floating point numbers. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoki...

USN-853-1: Firefox and Xulrunner vulnerabilities

Alin Rad Pop discovered a heap-based buffer overflow in Firefox when it converted strings to floating point numbers. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoki...

CVE-2009-3383

The entry CVE-2009-3383 affects Mozilla Firefox 3.5.x prior to 3.5.4, describing memory corruption in the JavaScript engine that could crash the browser or potentially allow arbitrary code execution via unknown vectors. Affected product is Firefox 3.5.x; impact is high (remote code execution or D...

Mozilla Firefox JavaScript Engine Information Disclosure (CVE-2005-0989)

The Mozilla web browser and its derivatives, Firefox, Netscape, and K-Meleon are applications designed for tasks related to browsing the web, such as displaying HTML encoded pages, downloading files, etc. These applications have a built in functionality to interpret JavaScript code. One of the...

Mozilla Foundation Security Advisory 2009-64

Mozilla Foundation Security Advisory 2009-64 Title: Crashes with evidence of memory corruption rv:1.9.1.4/ 1.9.0.15 Impact: Critical Announced: October 27, 2009 Reporter: Mozilla developers and community Products: Firefox Fixed in: Firefox 3.5.4 Firefox 3.0.15 Description Mozilla developers and...

SuSE 11 Security Update : acroread_ja (SAT Patch Number 769)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658 / CVE-2009-0927 / CVE-2009-0193 / CVE-2009-0928 / CVE-2009-1061 /...

SuSE 11 Security Update : Mozilla Firefox (SAT Patch Number 1200)

Mozilla Firefox was updated to the 3.0.13 release, fixing some security issues and bugs : - Security researcher Juan Pablo Lopez Yacubian reported that an attacker could call window.open on an invalid URL which looks similar to a legitimate URL and then use document.write to place content within...

DSA-1885-1 xulrunner - several vulnerabilities

Bulletin has no description...

Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 (Windows)

The host is installed with Firefox browser and is prone to multiple Denial of Service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultdosvulnsep09win.nasl 5055 2017-01-20 14:08:39Z teissa $ Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 Windows Authors: Shara...