54 matches found
CVE-2025-10529 Same-origin policy bypass in the Layout component
Same-origin policy bypass in the Layout component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...
CVE-2025-10529
Same-origin policy bypass in the Layout component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...
Firefox -- Same-origin policy bypass
https://bugzilla.mozilla.org/showbug.cgi?id=1970490 reports: Same-origin policy bypass in the Layout component...
KLA88012 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerability in Graphics: Canvas2D...
The vulnerability of the Layout component in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of the Layout component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Layout component in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of the Layout component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
PT-2024-5754 · Google +4 · Google Chrome +4
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 127.0.6533.99 Microsoft Edge affected versions not specified Description: The issue is related to a heap buffer overflow in the Layout component, which could allow a remote attacker to exploit heap corruption v...
The vulnerability of the Layout component in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of the Layout component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
PT-2024-5274 · Google +4 · Google Chrome +4
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 127.0.6533.72 Microsoft Edge affected versions not specified Description: The issue is related to a heap buffer overflow in the Layout component, which could allow a remote attacker to exploit heap corruption v...
The vulnerability of the QTextLayout component of the cross-platform software development framework for Qt, which allows a hacker to trigger a service failure.
The vulnerability of the QTextLayout component of the cross-platform software development framework for Qt is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created SVG file...
The vulnerability of the Layout component in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of the Layout component in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code remotely...
The vulnerability of the Layout component in Microsoft Edge and Google Chrome browsers allows attackers to execute arbitrary code.
The vulnerability of the Layout component in Microsoft Edge and Google Chrome is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
Mozilla Firefox Layout Frame Constructor Memory Corruption (CVE-2007-5959)
Firefox is an open source web browser developed by Mozilla Foundation. The application is capable of interpreting and rendering many types of Internet content, including various versions of HTML, XML, CSS Cascade Style Sheet, Javascript, various graphic formats, and so on. Firefox is made availab...
CVE-2008-3444
The connected records confirm a vulnerability in Mozilla Firefox 3.0 and 3.0.1 where the content layout component can be triggered by a crafted but well-formed HTML page containing a simple set of legitimate tags. This leads to a NULL pointer dereference and a browser crash, i.e., a denial of ser...