Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2019/11/06 12:0 a.m.25 views

Mozilla Firefox ESR < 31.6 Multiple Vulnerabilities

Binary data 701254.prm...

7.5CVSS9.6AI score0.67465EPSS
Exploits4References27
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2015-0342)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.2AI score0.67465EPSS
Exploits4References27
Mageia
Mageia
added 2015/09/08 7:20 a.m.49 views

Updated iceape packages fix security vulnerabilities

Updated iceape packages fix security issues: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 allow remote attackers to cause a denial of service memory corruption and application crash or possibly...

9.3CVSS10.1AI score0.67465EPSS
Exploits4References25
OpenVAS
OpenVAS
added 2015/04/06 12:0 a.m.33 views

Mozilla Firefox Multiple Vulnerabilities-01 (Apr 2015) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

7.5CVSS9.3AI score0.67465EPSS
Exploits4References10
NVD
NVD
added 2015/04/01 10:59 a.m.19 views

CVE-2015-0812

Mozilla Firefox before 37.0 does not require an HTTPS session for lightweight theme add-on installations, which allows man-in-the-middle attackers to bypass an intended user-confirmation requirement by deploying a crafted web site and conducting a DNS spoofing attack against a mozilla.org subdoma...

4.3CVSS6.1AI score0.01261EPSS
Exploits0References7
CVE
CVE
added 2015/04/01 10:0 a.m.139 views

CVE-2015-0812

CVE-2015-0812 affects Mozilla Firefox prior to 37.0, where lightweight theme add-on installations could be initiated over HTTP, allowing a man-in-the-middle to bypass the user-confirmation gate by DNS-spoofing a mozilla.org subdomain. The vulnerability enables MITM-style deployment of themes with...

4.3CVSS9AI score0.01261EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2015/04/01 12:0 a.m.36 views

CVE-2015-0812

Mozilla Firefox before 37.0 does not require an HTTPS session for lightweight theme add-on installations, which allows man-in-the-middle attackers to bypass an intended user-confirmation requirement by deploying a crafted web site and conducting a DNS spoofing attack against a mozilla.org subdoma...

4.3CVSS7.1AI score0.01261EPSS
Exploits0References3
Rows per page
Query Builder