Use-after-free in DirectWrite font handling — Mozilla

Mozilla community member James Kitchener reported a crash in DirectWrite when rendering MathML content with specific fonts due to an error in how font resources and tables are handled. This leads to use-after-free of a DirectWrite font-face object, resulting in a potentially exploitable crash...

OpenJDK: Resource denial of service (AWT, 8001038)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the...

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2709162)

This host is missing an important security update according to Microsoft Bulletin MS12-041. OpenVAS Vulnerability Test $Id: secpodms12-041.nasl 5341 2017-02-18 16:59:12Z cfi $ Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities 2709162 Authors: Antu Sanadi Copyright: Copyright c 2012...

Integer overflow

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Cascading Style Sheets CSS values in an array,...

CVE-2010-2752

CVE-2010-2752 is an integer overflow in Mozilla’s CSS handling that affects Firefox 3.5.x (before 3.5.11), Firefox 3.6.x (before 3.6.7), Thunderbird 3.0.x (before 3.0.6), Thunderbird 3.1.x (before 3.1.1), and SeaMonkey before 2.0.6. The issue arises in an array class used to store CSS values, tie...

CVE-2010-2752

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Cascading Style Sheets CSS values in an array,...

nsCSSValue:: Array index integer overflow

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Cascading Style Sheets CSS values in an array,...

Mozilla Firefox CSS font-face Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling of...