Lucene search
K

36 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:17 a.m.7 views

SUSE CVE-2015-4495

The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS before 2.2 allows remote attackers to bypass the Same Origin Policy, and read arbitrary files or gain privileges, via vectors involving crafted JavaScript code and a native setter, as exploited in the...

8.8CVSS8.9AI score0.70226EPSS
Exploits8References13
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2015:1380-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.70226EPSS
Exploits8References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2015:1528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.70226EPSS
Exploits8References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2015:1476-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.70226EPSS
Exploits8References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2015:1379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.70226EPSS
Exploits8References6
OpenVAS
OpenVAS
added 2016/05/06 12:0 a.m.28 views

RedHat Update for firefox RHSA-2015:1581-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.70226EPSS
Exploits8References4
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2015-0305)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.70226EPSS
Exploits8References7
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.23 views

Oracle: Security Advisory (ELSA-2015-1581)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.70226EPSS
Exploits8References4
OpenVAS
OpenVAS
added 2015/09/18 12:0 a.m.40 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:1389-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/09/11 12:0 a.m.50 views

SUSE SLED11 / SLES11 Security Update : MozillaFirefox, mozilla-nss (SUSE-SU-2015:1528-1)

Mozilla Firefox is being updated to the current Firefox 38ESR branch specifically the 38.2.0ESR release. Security issues fixed : - MFSA 2015-78 / CVE-2015-4495: Same origin violation and local file stealing via PDF reader - MFSA 2015-79 / CVE-2015-4473/CVE-2015-4474: Miscellaneous memory safety...

10CVSS7.3AI score0.70226EPSS
Exploits8References30
Tenable Nessus
Tenable Nessus
added 2015/09/01 12:0 a.m.55 views

SUSE SLES11 Security Update : MozillaFirefox, mozilla-nss (SUSE-SU-2015:1449-1) (Logjam)

Mozilla Firefox is being updated to the current Firefox 38ESR branch specifically the 38.2.0ESR release. Security issues fixed : - MFSA 2015-78 / CVE-2015-4495: Same origin violation and local file stealing via PDF reader - MFSA 2015-79 / CVE-2015-4473/CVE-2015-4474: Miscellaneous memory safety...

10CVSS7.4AI score0.9986EPSS
Exploits10References67
exploitpack
exploitpack
added 2015/08/15 12:0 a.m.40 views

Mozilla Firefox 39.03 - pdf.js Same Origin Policy

Mozilla Firefox 39.03 - pdf.js Same Origin Policy / Exploit Title: Firefox CVE-2015-4495 Test Run the index.html Make sure the main.js is in the same directory and we should be able to see the directory listing. 3. Solution Upgrade to the latest firefox 39.0.3 / var starttimeout=2000; var...

4.3CVSS0.2AI score0.70226EPSS
Exploits8
0day.today
0day.today
added 2015/08/15 12:0 a.m.62 views

Firefox 39.03 - pdf.js Same Origin Policy Exploit

Exploit for multiple platform in category local exploits / Exploit Title: Firefox CVE-2015-4495 Test Run the index.html Make sure the main.js is in the same directory and we should be able to see the directory listing. 3. Solution Upgrade to the latest firefox 39.0.3 / var starttimeout=2000; var...

4.3CVSS8.7AI score0.70226EPSS
Exploits8
Exploit DB
Exploit DB
added 2015/08/15 12:0 a.m.70 views

Mozilla Firefox < 39.03 - 'pdf.js' Same Origin Policy

/ Exploit Title: Firefox CVE-2015-4495 Test Run the index.html Make sure the main.js is in the same directory and we should be able to see the directory listing. 3. Solution Upgrade to the latest firefox 39.0.3 / var starttimeout=2000; var sandboxcontexti=null; var DIRCACHE=; var FILECACHE=; var...

8.8CVSS8.8AI score0.70226EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2015/08/14 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2015:1379-1)

This security update bsc940918 fixes the following issues : - MFSA 2015-78: CVE-2015-4495, bmo1178058: Same origin violation - Remove PlayPreview registration from PDF Viewer bmo1179262 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE securit...

8.8CVSS7.2AI score0.70226EPSS
Exploits8References4
OSV
OSV
added 2015/08/12 9:10 a.m.9 views

SUSE-SU-2015:1379-1 Security update for MozillaFirefox

This security update bsc940918 fixes the following issues: MFSA 2015-78: CVE-2015-4495, bmo1178058: Same origin violation Remove PlayPreview registration from PDF Viewer bmo1179262...

8.8CVSS8.7AI score0.70226EPSS
Exploits8References3
Circl
Circl
added 2015/08/11 12:45 a.m.11 views

CVE-2015-4495

creationtimestamp| type| source ---|---|--- 2015-08-11 00:45:39+00:00| seen| MISP/55c9458d-91f4-4c02-8d98-0fde0a00020f 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/firefoxpdfjsfiletheft.rb 2020-10-09 16:46:07+00:00| seen|...

8.8CVSS6.6AI score0.70226EPSS
Exploits8References5
OpenVAS
OpenVAS
added 2015/08/10 12:0 a.m.32 views

Mozilla Firefox ESR Security Bypass Vulnerability (Aug 2015) - Windows

Mozilla Firefox ESR is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.7AI score0.70226EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2015/08/10 12:0 a.m.29 views

RHEL 5 / 6 / 7 : firefox (RHSA-2015:1581)

Updated firefox packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.2AI score0.70226EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2015/08/10 12:0 a.m.45 views

Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20150807)

A flaw was discovered in Mozilla Firefox that could be used to violate the same-origin policy and inject web script into a non-privileged part of the built-in PDF file viewer PDF.js. An attacker could create a malicious web page that, when viewed by a victim, could steal arbitrary files including...

8.8CVSS7.1AI score0.70226EPSS
Exploits8References2
Rows per page
Query Builder