Lucene search
K

31 matches found

RedHat Linux
RedHat Linux
added 2017/04/20 8:21 a.m.6 views

Mozilla: Uninitialized values used while parsing application/http-index-format content (MFSA 2017-11, MFSA 2017-12)

A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and...

7.5CVSS7.3AI score0.02698EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2017/04/20 12:0 a.m.27 views

CVE-2017-5445

A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and...

7.5CVSS7.1AI score0.02698EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2017/04/20 12:0 a.m.36 views

CVE-2017-5444

A buffer overflow vulnerability while parsing "application/http-index-format" format content when the header contains improperly formatted data. This allows for an out-of-bounds read of data from memory. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox ...

7.5CVSS7.3AI score0.07008EPSS
Exploits0References4
OSV
OSV
added 2017/04/20 12:0 a.m.1 views

UBUNTU-CVE-2017-5445

A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and...

7.5CVSS7.2AI score0.02698EPSS
Exploits1References5
OSV
OSV
added 2017/04/20 12:0 a.m.2 views

UBUNTU-CVE-2017-5444

A buffer overflow vulnerability while parsing "application/http-index-format" format content when the header contains improperly formatted data. This allows for an out-of-bounds read of data from memory. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox ...

7.5CVSS7.4AI score0.07008EPSS
Exploits0References5
NVD
NVD
added 2008/11/13 11:30 a.m.20 views

CVE-2008-0017

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

9.3CVSS8.1AI score0.07677EPSS
Exploits0References33
Prion
Prion
added 2008/11/13 11:30 a.m.13 views

Memory corruption

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

9.3CVSS8.3AI score0.07677EPSS
Exploits0References33Affected Software4
Cvelist
Cvelist
added 2008/11/13 11:0 a.m.25 views

CVE-2008-0017

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

10AI score0.07677EPSS
Exploits0References33
RedHat Linux
RedHat Linux
added 2008/11/13 2:4 a.m.5 views

Mozilla buffer overflow in http-index-format parser

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

9.3CVSS6.6AI score0.07677EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2008/11/13 12:0 a.m.39 views

CVE-2008-0017

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

9.3CVSS6.5AI score0.07677EPSS
Exploits0References2
Mozilla
Mozilla
added 2008/11/12 12:0 a.m.42 views

Buffer overflow in http-index-format parser — Mozilla

Justin Schuh of the IBM X-Force reported a flaw in the way Mozilla parses the http-index-format MIME type. By sending a specially crafted 200 header line in the HTTP index response, an attacker can cause the browser to crash and run arbitrary code on the victim's computer...

9.3CVSS4AI score0.07677EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder