Lucene search
K

62 matches found

BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.6 views

The vulnerability of the Mozilla SeaMonkey software package, which allows a malicious individual to execute arbitrary code.

Mozilla SeaMonkey software contains a vulnerability related to implementation errors of the Web Workers technology. Exploiting this vulnerability allows malicious actors to execute arbitrary code by terminating the worker process that transfers objects between threads, using asm.js...

10CVSS7.6AI score0.07004EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.6 views

The vulnerability of the Firefox browser, which allows a malicious actor to execute arbitrary code

The Mozilla Firefox browser contains a vulnerability related to errors in the implementation of the Web Workers technology. Exploiting this vulnerability allows malicious actors to execute arbitrary code by terminating the worker process, thereby enabling them to transfer objects between threads...

10CVSS7.5AI score0.07004EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2015/05/21 12:0 a.m.38 views

Mozilla Firefox Multiple Vulnerabilities-01 (May 2015) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS9.1AI score0.07417EPSS
Exploits0References5
NVD
NVD
added 2015/05/14 10:59 a.m.15 views

CVE-2015-2712

The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote attackers to trigger out-of-bounds write operations and possibly execute arbitrary code, or trigger...

7.5CVSS9.5AI score0.03739EPSS
Exploits0References7
Prion
Prion
added 2015/05/14 10:59 a.m.10 views

Out-of-bounds

The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote attackers to trigger out-of-bounds write operations and possibly execute arbitrary code, or trigger...

7.5CVSS7.5AI score0.03739EPSS
Exploits0References7Affected Software2
CVE
CVE
added 2015/05/14 10:0 a.m.132 views

CVE-2015-2712

Mozilla Firefox before 38.0 is affected by CVE-2015-2712 due to an issue in the asm.js validation that misdefines heap lengths, enabling out-of-bounds writes (and potentially reads) via crafted JavaScript and possibly allowing arbitrary code execution or memory leakage. The fault is described in ...

7.5CVSS9.3AI score0.03739EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/05/14 10:0 a.m.18 views

CVE-2015-2712

The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote attackers to trigger out-of-bounds write operations and possibly execute arbitrary code, or trigger...

9.6AI score0.03739EPSS
Exploits0References7
CNVD
CNVD
added 2015/05/14 12:0 a.m.4 views

Mozilla Firefox 'asm.js' Out-of-Bounds Read/Write Vulnerability

Mozilla Firefox is a popular open source WEB browser. Mozilla Firefox has an out-of-bounds read/write vulnerability in 'asm.js' when validating Javascript, which allows remote attackers to exploit the vulnerability to construct a malicious web page that can be parsed by the user and can be used t...

7.5CVSS7.4AI score0.03739EPSS
Exploits0References1
OSV
OSV
added 2015/05/13 12:0 a.m.2 views

UBUNTU-CVE-2015-2712

The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote attackers to trigger out-of-bounds write operations and possibly execute arbitrary code, or trigger...

7.5CVSS7.5AI score0.03739EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2015/05/13 12:0 a.m.54 views

firefox: multiple issues

CVE-2015-2708 Memory safety bugs fixed in Firefox ESR 31.7 and Firefox 38: Jesse Ruderman, Mats Palmgren, Byron Campen, and Steve Fink reported memory safety problems and crashes that affect Firefox ESR 31.6 and Firefox 37. - CVE-2015-2709 Memory safety bugs fixed in Firefox 38: Gary Kwong,...

7.5CVSS9.4AI score0.07417EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2015/05/13 12:0 a.m.22 views

CVE-2015-2712

The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote attackers to trigger out-of-bounds write operations and possibly execute arbitrary code, or trigger...

7.5CVSS7.4AI score0.03739EPSS
Exploits0References3
Mozilla
Mozilla
added 2015/05/12 12:0 a.m.39 views

Out-of-bounds read and write in asm.js validation — Mozilla

Security researcher Dougall Johnson reported an out-of-bounds read and write in asm.js during JavaScript validation due to an error in how heap lengths are defined. This results in a potentially exploitable crash and could allow for the reading of random memory which may contain sensitive data...

7.5CVSS8.8AI score0.03739EPSS
Exploits0References2Affected Software2
FreeBSD
FreeBSD
added 2015/05/12 12:0 a.m.49 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-46 Miscellaneous memory safety hazards rv:38.0 / rv:31.7 MFSA-2015-47 Buffer overflow parsing H.264 video with Linux Gstreamer MFSA-2015-48 Buffer overflow with SVG content and CSS MFSA-2015-49 Referrer policy ignored when links opened by middle-click and...

10CVSS9.6AI score0.07417EPSS
Exploits0References14
Prion
Prion
added 2015/03/24 12:59 a.m.18 views

Design/Logic Flaw

The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely skipped during JIT compilation and heap access, which allows remote attackers to read or write to...

6.8CVSS7.5AI score0.03651EPSS
Exploits0References13Affected Software3
CVE
CVE
added 2015/03/24 12:0 a.m.162 views

CVE-2015-0817

CVE-2015-0817 is a vulnerability in the asm.js/JIT bounds checking of Mozilla Firefox (and related Mozilla products) that can allow a remote attacker to read/write memory and potentially execute arbitrary code due to improper bounds checks during JIT compilation. Connected IBM advisories confirm ...

6.8CVSS9.4AI score0.03651EPSS
Exploits0References13Affected Software3
UbuntuCve
UbuntuCve
added 2015/03/22 12:0 a.m.32 views

CVE-2015-0817

The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely skipped during JIT compilation and heap access, which allows remote attackers to read or write to...

6.8CVSS7.1AI score0.03651EPSS
Exploits0References3
NVD
NVD
added 2014/02/06 5:44 a.m.15 views

CVE-2014-1488

The Web workers implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving termination of a worker process that has performed a cross-thread object-passing operation in conjunction with use of asm.js...

10CVSS9.5AI score0.07004EPSS
Exploits1References19
Cvelist
Cvelist
added 2014/02/06 2:0 a.m.24 views

CVE-2014-1488

The Web workers implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving termination of a worker process that has performed a cross-thread object-passing operation in conjunction with use of asm.js...

9.5AI score0.07004EPSS
Exploits1References19
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.43 views

SeaMonkey < 2.24 Multiple Vulnerabilities

Binary data 8099.prm...

10CVSS9.1AI score0.07072EPSS
Exploits11References24
UbuntuCve
UbuntuCve
added 2014/02/05 12:0 a.m.25 views

CVE-2014-1488

The Web workers implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving termination of a worker process that has performed a cross-thread object-passing operation in conjunction with use of asm.js...

10CVSS7AI score0.07004EPSS
Exploits1References3
Rows per page
Query Builder