15 matches found
Mozilla Firefox Security Advisory (MFSA2015-42) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Mozilla Firefox ESR < 31.6 Multiple Vulnerabilities
Binary data 701254.prm...
Firefox PDF.js Javascript Injection (CVE-2015-0802; CVE-2015-0816)
A remote code execution vulnerability exists in Firefox 35-36. The vulnerability is due to a privilege escalation bug in certain resources. A remote attacker can exploit this vulnerability by enticing a victim to view maliciously crafted content...
Nexus Security Bulletin - February 2016Stay organized with collectionsSave and categorize content based on your preferences.
We have released a security update to Nexus devices through an over-the-air OTA update as part of our Android Security Bulletin Monthly Release process. The Nexus firmware images have also been released to the Google Developer site. Builds LMY49G or later and Android M with Security Patch Level o...
Mageia: Security Advisory (MGASA-2015-0342)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-0802
creationtimestamp| type| source ---|---|--- 2015-08-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37958 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/firefoxproxyprototype.rb 2018-05-29 15:50:33+00:00...
Mozilla Firefox - 'pdf.js' Privileged JavaScript Injection (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Firefox PDF.js Privileged Javascript Injection', 'Description' = %q This module gains remote code execution on Firefox 35-36 by...
Firefox PDF.js Privileged Javascript Injection Exploit
This Metasploit module gains remote code execution on Firefox 35-36 by abusing a privilege escalation bug in resource:// URIs. PDF.js is used to exploit the bug. This exploit requires the user to click anywhere on the page to trigger the vulnerability. This module requires Metasploit:...
Mozilla Firefox Multiple Vulnerabilities-01 (Apr 2015) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
CVE-2015-0802
Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of ...
CVE-2015-0802
CVE-2015-0802 concerns Mozilla Firefox before 37.0, where access control relied on docshell type information instead of page principal information for Window.webidl, potentially allowing a remote attacker to execute arbitrary JavaScript with chrome privileges via certain content navigation that p...
CVE-2015-0802
Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of ...
Firefox ESR 31.x < 31.6 Multiple Vulnerabilities (Mac OS X)
The version of Firefox ESR 31.x installed on the remote Mac OS X host is prior to 31.6. It is, therefore, affected by the following vulnerabilities : - A privilege escalation vulnerability exists which relates to anchor navigation. A remote attacker can exploit this to bypass same-origin policy...
Firefox ESR 31.x < 31.6 Multiple Vulnerabilities
The version of Firefox ESR 31.x installed on the remote Windows host is prior to 31.6. It is, therefore, affected by the following vulnerabilities : - A privilege escalation vulnerability exists which relates to anchor navigation. A remote attacker can exploit this to bypass same-origin policy...
Firefox Proxy Prototype Privileged Javascript Injection
This exploit gains remote code execution on Firefox 31-34 by abusing a bug in the XPConnect component and gaining a reference to the privileged chrome:// window. This exploit requires the user to click anywhere on the page to trigger the vulnerability. This module requires Metasploit:...