Lucene search
+L

237 matches found

UbuntuCve
UbuntuCve
added 2017/10/02 12:0 a.m.17 views

CVE-2017-7824

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox 56, Firefox ESR...

9.8CVSS7.3AI score0.03641EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/09/28 11:47 p.m.6 views

Mozilla: Buffer overflow when drawing and validating elements with ANGLE (MFSA 2017-22)

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox 56, Firefox ESR...

9.8CVSS7.5AI score0.03641EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2017/09/28 7:19 p.m.22 views

CVE-2017-7824

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox 56, Firefox ESR...

9.8CVSS4.2AI score0.03641EPSS
Exploits0References2
Mozilla
Mozilla
added 2017/09/28 12:0 a.m.532 views

Security vulnerabilities fixed in Firefox ESR 52.4 — Mozilla

A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash. A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications ARIA elements...

9.8CVSS0.2AI score0.03641EPSS
Exploits2References10Affected Software1
Mozilla
Mozilla
added 2017/09/28 12:0 a.m.540 views

Security vulnerabilities fixed in Firefox 56 — Mozilla

A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash. A spoofing vulnerability can occur when a page switches to fullscreen mode without user notification, allowing a fake addre...

9.8CVSS10AI score0.03641EPSS
Exploits4References19Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.68 views

Mozilla Firefox < 53.0.2

The version of Firefox installed on the remote Windows host is prior to 53.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2017-14 advisory. - A use-after-free can occur during Buffer11 API calls within the ANGLE graphics library, used for WebGL content. This can lead ...

8.8CVSS8.2AI score0.01353EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2017/05/05 12:0 a.m.62 views

KLA11001 Use-after-free vulnerability in Mozilla Firefox and Mozilla Firefox ESR

Use-after-free vulnerability was found in Mozilla Firefox and Mozilla Firefox ESR. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a Buffer11 API calls within the ANGLE graphics library, used for WebGL content...

8.8CVSS8.6AI score0.01353EPSS
Exploits0References4
CNVD
CNVD
added 2017/03/16 12:0 a.m.3 views

Mozilla Firefox MFSA Memory Misreference Vulnerability

Mozilla Firefox is an open source web browser. A security vulnerability exists in Mozilla Firefox. Free usage may occur during buffer storage operations in the ANGLE graphics library for WebGL content. The buffer storage can still be freed under certain circumstances, leading to a potentially...

7.5CVSS8.9AI score0.0178EPSS
Exploits1References1
CNVD
CNVD
added 2016/06/14 12:0 a.m.4 views

Mozilla Firefox and Firefox ESR ANGLE Denial of Service Vulnerability

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open-source web browser; Firefox ESR is an extended support version of Firefox.Google ANGLE Almost Native Graphics Google ANGLE Almost Native Graphics Layer Engine is a graphics...

8.8CVSS8.8AI score0.0172EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/01/28 12:0 a.m.61 views

Firefox < 44 Multiple Vulnerabilities

The version of Firefox installed on the remote Windows host is prior to 44. It is, therefore, affected by the following vulnerabilities : - A cookie injection vulnerability exists due to illegal control characters being stored as cookie values in violation of RFC6265. A remote attacker can exploi...

10CVSS7.5AI score0.05992EPSS
Exploits0References25
ThreatPost
ThreatPost
added 2016/01/27 10:35 a.m.12 views

Mozilla Firefox 44 Security Patches

Mozilla has patched a number of critical vulnerabilities in Firefox 44 and Firefox Extended Release 38.6, which were released this week. The most serious flaws were memory vulnerabilities that lived in both the public and extended support versions of the browser. A buffer overflow write in WebGL,...

0.9AI score
Exploits0References6
Mozilla
Mozilla
added 2016/01/26 12:0 a.m.47 views

Unsafe memory manipulation found through code inspection — Mozilla

Security researcher Ronald Crane reported three vulnerabilities affecting released code that were found through code inspection. These include a high rated memory safety issue in the ANGLE graphics library, a moderate rated potential wild pointer flaw when handling zip files, and a critical rated...

10CVSS9.6AI score0.05645EPSS
Exploits0References6Affected Software1
Mozilla
Mozilla
added 2015/11/03 12:0 a.m.64 views

Vulnerabilities found through code inspection — Mozilla

Security researcher Ronald Crane reported three vulnerabilities affecting released code that were found through code inspection. These included a buffer overflow in the ANGLE graphics library and two issues of missing status checks in SVG rendering and during cryptographic key manipulation. These...

7.5CVSS9.7AI score0.03218EPSS
Exploits0References6Affected Software3
Tenable Nessus
Tenable Nessus
added 2015/09/23 12:0 a.m.41 views

FreeBSD : mozilla -- multiple vulnerabilities (2d56c7f4-b354-428f-8f48-38150c607a05)

The Mozilla Project reports : MFSA 2015-96 Miscellaneous memory safety hazards rv:41.0 / rv:38.3 MFSA 2015-97 Memory leak in mozTCPSocket to servers MFSA 2015-98 Out of bounds read in QCMS library with ICC V4 profile attributes MFSA 2015-99 Site attribute spoofing on Android by pasting URL with...

9.3CVSS8.3AI score0.0608EPSS
Exploits0References46
Mozilla
Mozilla
added 2015/09/22 12:0 a.m.44 views

Memory safety errors in libGLES in the ANGLE graphics library — Mozilla

Security researcher Ronald Crane reported two issues in the libGLES portions of the ANGLE graphics library, used for WebGL and OpenGL content on Windows systems. The first of these is a missing bounds check leading to memory safety errors when manipulating shaders which could result in the writin...

7.5CVSS6.7AI score0.04184EPSS
Exploits0References4Affected Software4
Kaspersky
Kaspersky
added 2015/09/22 12:0 a.m.34 views

KLA11454 Multiple vulnerabilities in SeaMonkey

Multiple vulnerabilities were found in SeaMonkey. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities...

9.3CVSS10AI score0.0608EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2015/09/22 12:0 a.m.44 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-96 Miscellaneous memory safety hazards rv:41.0 / rv:38.3 MFSA 2015-97 Memory leak in mozTCPSocket to servers MFSA 2015-98 Out of bounds read in QCMS library with ICC V4 profile attributes MFSA 2015-99 Site attribute spoofing on Android by pasting URL with...

9.3CVSS9.6AI score0.0608EPSS
Exploits0References19
Rows per page
Query Builder