6 matches found
SUSE CVE-2015-7223
The WebExtension APIs in Mozilla Firefox before 43.0 allow remote attackers to gain privileges, and possibly obtain sensitive information or conduct cross-site scripting XSS attacks, via a crafted web site...
Fedora 22 : firefox-43.0-1.fc22 (2015-7ab3d3afcf)
Update to latest upstream - Firefox 43 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora 23 : firefox-43.0-1.fc23 (2015-51b1105902)
Update to latest upstream - Firefox 43 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
openSUSE Security Update : MozillaFirefox (openSUSE-2015-942)
This update for MozillaFirefox fixes the following security issues : - MFSA 2015-134/CVE-2015-7201/CVE-2015-7202 Miscellaneous memory safety hazards - MFSA 2015-135/CVE-2015-7204 bmo1216130 Crash with JavaScript variable assignment with unboxed objects - MFSA 2015-136/CVE-2015-7207 bmo1185256...
Mozilla Firefox Multiple Vulnerabilities (Dec 2015) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
CVE-2015-7223
CVE-2015-7223 affects Mozilla Firefox before 43.0 (and related ESR lines in some advisories) via the WebExtension APIs. Root cause: unsafe handling in WebExtension APIs that can grant privileges to a crafted site. Impact: remote attackers could gain privileges, access sensitive information, or en...