Debian DSA-4386-1 : curl - security update

Multiple vulnerabilities were discovered in cURL, an URL transfer library. - CVE-2018-16890 Wenxiang Qian of Tencent Blade Team discovered that the function handling incoming NTLM type-2 messages does not validate incoming data correctly and is subject to an integer overflow vulnerability, which...

Mozilla Firefox 55 Denial Of Service

Title: ============== Unpatched Mozilla Firefox v50 - v55 Stack Overflow DoS Vulnerability References: ============== https://bugzilla.mozilla.org/showbug.cgi?id=1322307 Timeline: ============== Reported to Mozilla: 2016-12-06 Mozilla made public: 2016-12-15 Declined bounty: 2017-01-30 Advisory...

Mozilla Firefox 50 < 55 - Stack Overflow Denial of Service

function done var x = ''; for i=0; i'; var uri = 'data:image/svg+xml,' + x; var i = new Image; i.src = uri; !-- Visiting https://bugzilla.mozilla.org/attachment.cgi?id=8817075 may likely crash your browser tab. Debug Information: ============== ff4.1108: Stack overflow - code c00000fd first chanc...

Mozilla Firefox 50 55 - Stack Overflow Denial of Service

Mozilla Firefox 50 55 - Stack Overflow Denial of Service function done var x = ''; for i=0; i'; var uri = 'data:image/svg+xml,' + x; var i = new Image; i.src = uri; !-- Visiting https://bugzilla.mozilla.org/attachment.cgi?id=8817075 may likely crash your browser tab. Debug Information:...

Mozilla Firefox 50 - 55 - Stack Overflow Denial of Service Exploit

Exploit for multiple platform in category dos / poc function done var x = ''; for i=0; i'; var uri = 'data:image/svg+xml,' + x; var i = new Image; i.src = uri; !-- Visiting https://bugzilla.mozilla.org/attachment.cgi?id=8817075 may likely crash your browser tab. Debug Information: ==============...