Lucene search
K

2289 matches found

FreeBSD
FreeBSD
added 2014/03/19 12:0 a.m.49 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2014-15 Miscellaneous memory safety hazards rv:28.0 / rv:24.4 MFSA 2014-16 Files extracted during updates are not always read only MFSA 2014-17 Out of bounds read during WAV file decoding MFSA 2014-18 crypto.generateCRMFRequest does not validate type of key MFSA...

10CVSS8.8AI score0.83633EPSS
Exploits23References19
Tenable Nessus
Tenable Nessus
added 2014/03/19 12:0 a.m.42 views

Firefox < 28.0 Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox is a version prior to version 28.0. It is, therefore, potentially affected by multiple vulnerabilities : - Memory issues exist that could lead to arbitrary code execution. CVE-2014-1493, CVE-2014-1494 - An issue exists where extracted files for updates are not...

10CVSS7.4AI score0.83633EPSS
Exploits22References38
Tenable Nessus
Tenable Nessus
added 2014/03/19 12:0 a.m.36 views

Ubuntu 12.04 LTS / 12.10 / 13.10 : firefox vulnerabilities (USN-2150-1)

Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman, Christoph Diehl, Gregor Wagner, Gary Kwong, Luke Wagner, Rob Fletcher and Makoto Kato discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker...

10CVSS7.9AI score0.83633EPSS
Exploits20References17
Mozilla
Mozilla
added 2014/03/18 12:0 a.m.36 views

WebGL content injection from one domain to rendering in another — Mozilla

Mozilla developer Jeff Gilbert discovered a mechanism where a malicious site with WebGL content could inject content from its context to that of another site's WebGL context, causing the second site to replace textures and similar content. This cannot be used to steal data but could be used to...

6.8CVSS8.9AI score0.01147EPSS
Exploits0References2Affected Software2
UbuntuCve
UbuntuCve
added 2014/03/18 12:0 a.m.37 views

CVE-2014-1502

The 1 WebGL.compressedTexImage2D and 2 WebGL.compressedTexSubImage2D functions in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to bypass the Same Origin Policy and render content in a different domain via unspecified vectors...

6.8CVSS6.9AI score0.01147EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/10/02 12:0 a.m.26 views

FreeBSD : mozilla -- multiple vulnerabilities (7dfed67b-20aa-11e3-b8d8-0025905a4771)

The Mozilla Project reports : MFSA 2013-76 Miscellaneous memory safety hazards rv:24.0 / rv:17.0.9 MFSA 2013-77 Improper state in HTML5 Tree Builder with templates MFSA 2013-78 Integer overflow in ANGLE library MFSA 2013-79 Use-after-free in Animation Manager during stylesheet cloning MFSA 2013-8...

10CVSS7.8AI score0.08894EPSS
Exploits4References38
ThreatPost
ThreatPost
added 2013/09/18 10:51 a.m.9 views

Mozilla 24 Resolves 17 Security Vulnerabilities

The Mozilla Foundation released Firefox 24 yesterday, issuing 17 security patches for the browser. Seven of the bulletins received the highest, critical impact rating, four are considered high impact advisories, the second most severe rating, and the remaining six are of moderate impact. Mozilla’...

0.1AI score
Exploits0References12
NVD
NVD
added 2013/09/18 10:8 a.m.16 views

CVE-2013-1729

The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote attackers to obtain desktop-screenshot data by reading from a CANVAS element...

2.6CVSS6.3AI score0.01233EPSS
Exploits0References5
Prion
Prion
added 2013/09/18 10:8 a.m.21 views

Design/Logic Flaw

The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote attackers to obtain desktop-screenshot data by reading from a CANVAS element...

2.6CVSS6.9AI score0.01233EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/09/18 10:0 a.m.24 views

CVE-2013-1729

The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote attackers to obtain desktop-screenshot data by reading from a CANVAS element...

6.2AI score0.01233EPSS
Exploits0References5
CVE
CVE
added 2013/09/18 10:0 a.m.55 views

CVE-2013-1729

CVE-2013-1729 affects Mozilla Firefox WebGL on Mac OS X when using NVIDIA graphics drivers. It is an information-disclosure vulnerability: reading from a CANVAS element can allow remote attackers to obtain desktop-screenshot data. Documented in multiple feeds (SUSE, Fedora/NASL, OpenVAS) with a f...

2.6CVSS6.3AI score0.01233EPSS
Exploits0References5Affected Software1
Mozilla
Mozilla
added 2013/09/17 12:0 a.m.38 views

WebGL Information disclosure through OS X NVIDIA graphic drivers — Mozilla

Mozilla developer Victor Porof reported a flaw in the NVIDIA OS X graphic drivers that would allow portions of a user's desktop or other visible applications to be incorporated into WebGL canvases. This could result in personal information becoming available to web content...

2.6CVSS5.7AI score0.01233EPSS
Exploits0References2Affected Software1
FreeBSD
FreeBSD
added 2013/08/17 12:0 a.m.37 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2013-76 Miscellaneous memory safety hazards rv:24.0 / rv:17.0.9 MFSA 2013-77 Improper state in HTML5 Tree Builder with templates MFSA 2013-78 Integer overflow in ANGLE library MFSA 2013-79 Use-after-free in Animation Manager during stylesheet cloning MFSA 2013-80...

10CVSS7.5AI score0.08894EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.46 views

Oracle Linux 5 / 6 : firefox (ELSA-2012-0515)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0515 advisory. firefox: 10.0.4-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR xulrunner...

10CVSS8.5AI score0.10098EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2013/05/29 12:0 a.m.38 views

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 8578)

Mozilla Firefox has been updated to the 17.0.6ESR security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and...

10CVSS9.1AI score0.07953EPSS
Exploits1References30
Tenable Nessus
Tenable Nessus
added 2013/05/29 12:0 a.m.43 views

SuSE 11.2 Security Update : Mozilla Firefox (SAT Patch Number 7741)

Mozilla Firefox has been updated to the17.0.6ESR security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and ...

10CVSS9.1AI score0.07953EPSS
Exploits1References32
securityvulns
securityvulns
added 2013/05/09 12:0 a.m.40 views

Mesa / WebGL / libgl buffer overflow

Heap overflow...

7.5CVSS2.7AI score0.01116EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/05/06 12:0 a.m.36 views

Mozilla Firefox 7.0 Multiple Vulnerabilities

Binary data 801321.prm...

10CVSS9.8AI score0.05657EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2013/05/06 12:0 a.m.41 views

Mozilla Thunderbird < 8.0 Multiple Vulnerabilities

Binary data 6789.prm...

10CVSS9.8AI score0.05657EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2013/05/06 12:0 a.m.48 views

Mozilla Thunderbird 7.0 Multiple Vulnerabilities

Binary data 801281.prm...

10CVSS9.8AI score0.05657EPSS
Exploits1References14
Rows per page
Query Builder