CVE-2018-12379

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...

Out-of-Bounds Write

Firefox Firefox ESR and Thunderbird are vulnerable to out-of-bounds Writes. A memory write error may occur when the Mozilla Updater opens a MAR format file that contains a very long item filename allowing remote unauthenticated attackers to cause denial of service conditions...

CVE-2018-12379

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...

Mozilla Thunderbird < 60.2.1

The version of Thunderbird installed on the remote Windows host is prior to 60.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-25 advisory. - A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code...

Mozilla Firefox and Firefox ESR Buffer Overflow Vulnerability (CNVD-2018-18305)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A buffer overflow vulnerability exists in Mozilla Firefox ESR versions prior to 60.2 and Firefox...