251 matches found
OPENSUSE-SU-2021:1854-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.10.2 - CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated bsc1186198. - CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection bsc1186199....
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
Command injection
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
CVE-2021-29951
CVE-2021-29951 involves the Mozilla Maintenance Service granting SERVICE_START access to BUILTIN|Users, enabling domain users to start/stop the browser update service. Affected: Windows systems older than Windows 10 build 1709; Firefox prior to 87 and Firefox ESR prior to 78.10.1, Thunderbird pri...
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
SUSE SLES11: MozillaFirefox / MozillaFirefox-translations-common / etc (SUSE-SU-2021:14743-1)
The remote SUSE Linux SLES11 / SLESSAP11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14743-1 advisory. Firefox Extended Support Release 78.11.0 ESR bsc1186696 CVE-2021-29964: Out of bounds-read when parsing a WMCOPYDATA message...
SUSE SLES15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2021:1919-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1919-1 advisory. Firefox Extended Support Release 78.11.0 ESR bsc1186696 CVE-2021-29964: Out of bounds-read when parsing a WMCOPYDATA message...
SUSE: Security Advisory (SUSE-SU-2013:0843-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:1854-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.10.2 - CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated bsc1186198. - CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection bsc1186199....
CVE-2021-29951
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
Security fix for the ALT Linux 10 package firefox-esr version 78.10.1-alt1
May 5, 2021 Andrey Cherepanov 78.10.1-alt1 - New version 78.10.1. - Security fixes: + CVE-2021-29951 Mozilla Maintenance Service could have been started or stopped by domain users...
Mozilla Firefox ESR < 78.10.1
"The version of Firefox ESR installed on the remote Windows host is prior to 78.10.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-18 advisory. - The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal...
Mozilla Thunderbird < 78.10.1
"The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 78.10.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-19 advisory. - The Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal...
Security Vulnerabilities fixed in Thunderbird 78.10.1 — Mozilla
The Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also exposed atta...
Security Vulnerabilities fixed in Firefox ESR 78.10.1 — Mozilla
The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating if an attacker spammed the 'Stop' command; but also...
Mozilla Firefox ESR < 78.10.1
"The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 78.10.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-18 advisory. - The Mozilla Maintenance Service granted SERVICESTART access to BUILTIN|Users which, in a domain network, grant...