Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2015-0342)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.2AI score0.67465EPSS
Exploits4References27
OpenVAS
OpenVAS
added 2015/05/04 12:0 a.m.29 views

Mozilla Firefox Plugin Initialization Use-after-free Vulnerability (Apr 2015) - Mac OS X

Mozilla Firefox is prone to a use after free vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

6.8CVSS9.4AI score0.02586EPSS
Exploits0References1
NVD
NVD
added 2015/04/27 11:59 a.m.16 views

CVE-2015-2706

Race condition in the AsyncPaintWaitEvent::AsyncPaintWaitEvent function in Mozilla Firefox before 37.0.2 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free via a crafted plugin that does not properly complete initialization...

6.8CVSS7.5AI score0.02586EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2015/04/27 12:0 a.m.27 views

openSUSE Security Update : Mozille Firefox (openSUSE-2015-325)

Mozilla Firefox was updated to 37.0.2 to fix one security issue. The following vulnerability was fixed : - CVE-2015-2706 Memory corruption during failed plugin initialization bmo1141081 MFSA 2015-45 bnc928116 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

6.8CVSS8.2AI score0.02586EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/27 12:0 a.m.25 views

Ubuntu 14.04 LTS : Firefox vulnerability (USN-2571-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2571-1 advisory. Robert Kaiser discovered a use-after-free during plugin initialization in some circumstances. If a user were tricked in to opening a specially crafted website, an...

6.8CVSS8.8AI score0.02586EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/04/25 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-2571-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.5AI score0.02586EPSS
Exploits0References2
CVE
CVE
added 2015/04/24 11:0 p.m.150 views

CVE-2015-2706

CVE-2015-2706 affects Mozilla Firefox before 37.0.2, where a race condition in AsyncPaintWaitEvent() during plugin initialization can lead to remote code execution or a denial of service via use-after-free. The vulnerability is confirmed in multiple advisories (e.g., Firefox updates to 37.0.2 add...

6.8CVSS9.4AI score0.02586EPSS
Exploits0References9Affected Software1
Ubuntu
Ubuntu
added 2015/04/24 10:45 a.m.49 views

USN-2571-1: Firefox vulnerability

Robert Kaiser discovered a use-after-free during plugin initialization in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the privileg...

6.8CVSS8.8AI score0.02586EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/04/22 12:0 a.m.40 views

Firefox < 37.0.2 Failed Plugin Memory Corruption (Mac OS X)

The version of Firefox installed on the remote Mac OS X host is prior to 37.0.2. It is, therefore, affected by a use-after-free error, related to the AsyncPaintWaitEvent method, due to a race condition caused when plugin initialization fails. A remote attacker, using a crafted web page, can explo...

6.8CVSS7.6AI score0.02586EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/04/21 12:0 a.m.26 views

CVE-2015-2706

Race condition in the AsyncPaintWaitEvent::AsyncPaintWaitEvent function in Mozilla Firefox before 37.0.2 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free via a crafted plugin that does not properly complete initialization...

6.8CVSS7.3AI score0.02586EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/04/20 12:0 a.m.55 views

KLA10554 Denial of service vulnerability in Mozilla Firefox

Race condition was found in Mozilla Firefox. By exploiting this vulnerability malicious users can cause denial of service or other unknown impact. This vulnerability can be exploited remotely via an unknown vectors related to plugins. Original advisories MFSA Related products Mozilla-Firefox CVE...

6.8CVSS9AI score0.02586EPSS
Exploits0References3
Rows per page
Query Builder