Lucene search
K

39 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2017-0039)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.33434EPSS
Exploits15References5
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.17 views

Mozilla Firefox Security Advisory (MFSA2017-01) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.8CVSS7.3AI score0.33434EPSS
Exploits24References29
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2017:0426-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.33434EPSS
Exploits16References14
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2017:0427-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.33434EPSS
Exploits16References14
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for firefox (EulerOS-SA-2017-1011)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.87921EPSS
Exploits35References4
OSV
OSV
added 2018/06/11 9:29 p.m.6 views

CVE-2017-5375

JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird 45.7, Firefox ESR 45.7, and Firefox 51...

9.8CVSS9.2AI score
Exploits0References15
CVE
CVE
added 2018/06/11 9:0 p.m.220 views

CVE-2017-5375

CVE-2017-5375 affects Mozilla Thunderbird, Firefox ESR, and Firefox prior to certain version thresholds. The issue is a JIT code allocation vulnerability that can bypass ASLR and DEP, enabling memory corruption. Public exploit activity exists (ASM.JS JIT-Spray PoCs) for multiple Firefox versions ...

9.8CVSS9.2AI score0.33434EPSS
Exploits13References15Affected Software3
Packet Storm
Packet Storm
added 2018/03/16 12:0 a.m.175 views

Firefox 46.0.1 ASM.JS JIT-Spray Remote Code Execution

CVE-2016-2819 and ASM.JS JIT-Spray "use strict" var Exploit = function this.asmjs = new Asmjs this.heap = new Heap Exploit.prototype.go = function / target address of fake node object / var nodetargetaddr = 0x5a500000 / target address of asm.js float pool payload/ var targeteip = 0x20200b58 / spr...

6.8CVSS9.5AI score0.33434EPSS
Exploits13
exploitpack
exploitpack
added 2018/03/16 12:0 a.m.65 views

Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution

Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution 46.0.1 -- CVE-2016-1960 and ASM.JS JIT-Spray "use strict" var Exploit = function this.asmjs = new Asmjs this.heap = new Heap Exploit.prototype.go = function / target address of fake node object / var nodetargetaddr = 0x20200000 / target...

7.5CVSS8.3AI score0.33434EPSS
Exploits17
Exploit DB
Exploit DB
added 2018/03/16 12:0 a.m.62 views

Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution

CVE-2016-2819 and ASM.JS JIT-Spray "use strict" var Exploit = function this.asmjs = new Asmjs this.heap = new Heap Exploit.prototype.go = function / target address of fake node object / var nodetargetaddr = 0x5a500000 / target address of asm.js float pool payload/ var targeteip = 0x20200b58 / spr...

9.8CVSS9.7AI score0.33434EPSS
Exploits13
exploitpack
exploitpack
added 2017/07/14 12:0 a.m.91 views

Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution

Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution function asmjsmodule "use asm"; / huge jitted nop sled / function payloadcode var val = 0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val +...

7.5CVSS9.4AI score0.87921EPSS
Exploits20
Packet Storm
Packet Storm
added 2017/07/14 12:0 a.m.98 views

Firefox 50.0.1 ASM.JS JIT-Spray Remote Code Execution

function asmjsmodule "use asm"; / huge jitted nop sled / function payloadcode var val = 0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0...

9.2AI score0.87921EPSS
Exploits20
Exploit DB
Exploit DB
added 2017/07/14 12:0 a.m.138 views

Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution

function asmjsmodule "use asm"; / huge jitted nop sled / function payloadcode var val = 0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0; val = val + 0xa8909090|0...

9.8CVSS9.2AI score0.87921EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2017/07/13 12:0 a.m.34 views

Virtuozzo 6 : firefox (VZLSA-2017-0190)

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS7.8AI score0.33434EPSS
Exploits16References11
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.35 views

EulerOS 2.0 SP1 : firefox (EulerOS-SA-2017-1012)

According to the versions of the firefox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or,...

9.8CVSS8.4AI score0.87921EPSS
Exploits35References21
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.230 views

EulerOS 2.0 SP2 : firefox (EulerOS-SA-2017-1011)

According to the versions of the firefox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or,...

9.8CVSS8.4AI score0.87921EPSS
Exploits35References21
Tenable Nessus
Tenable Nessus
added 2017/02/09 12:0 a.m.53 views

SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2017:0427-1)

MozillaFirefox 45 ESR was updated to 45.7 to fix the following issues bsc1021991 : - MFSA 2017-02/CVE-2017-5378: Pointer and frame data leakage of JavaScript objects bsc1021818 - MFSA 2017-02/CVE-2017-5396: Use-after-free with Media Decoder bsc1021821 - MFSA 2017-02/CVE-2017-5386: WebExtensions c...

9.8CVSS7.5AI score0.33434EPSS
Exploits16References30
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.29 views

RedHat Update for thunderbird RHSA-2017:0238-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.33434EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.46 views

CentOS Update for thunderbird CESA-2017:0238 centos7

Check the version of thunderbird SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882650";...

9.8CVSS7.1AI score0.33434EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.33 views

CentOS Update for thunderbird CESA-2017:0238 centos5

Check the version of thunderbird SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882651";...

9.8CVSS7.1AI score0.33434EPSS
Exploits15References2
Rows per page
Query Builder