Lucene search
K

16 matches found

0day.today
0day.today
added 2014/11/26 12:0 a.m.72 views

Mozilla Firefox 3.6 mChannel Use-After-Free Vulnerability

Mozilla Firefox 3.6 is prone to a use-after-free vulnerability in OBJECT mChannel that allows an attacker to execute arbitrary code. Title: Firefox 3.6 Universal function exploit var foo=document.getElementById"exploit";...

10CVSS1.1AI score0.73655EPSS
Exploits10
Packet Storm
Packet Storm
added 2014/11/25 12:0 a.m.36 views

Mozilla Firefox 3.6 mChannel Use-After-Free

Title: Firefox 3.6 Universal function exploit var foo=document.getElementById"exploit"; e.QueryInterfaceComponents.interfaces.nsIChannelEventSink.onChannelRedirectnull,new Object,0; var vftable = unescape"\x00% u0c10"; var shellcode =...

10CVSS0.2AI score0.73655EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2012/03/16 12:0 a.m.57 views

Mozilla Firefox 3.6.x < 3.6.28 Multiple Vulnerabilities

Binary data 6351.prm...

9.3CVSS9.8AI score0.0663EPSS
Exploits1References12
Cvelist
Cvelist
added 2011/05/07 6:0 p.m.28 views

CVE-2011-0075

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

10AI score0.05259EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2010/07/23 12:0 a.m.31 views

CVE-2010-1212

js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 propagation of deep aborts in...

9.3CVSS7.4AI score0.02726EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2010/06/24 12:0 a.m.41 views

CVE-2010-1203

The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp...

9.3CVSS7.5AI score0.03872EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/06/23 12:0 a.m.19 views

Mozilla Firefox 3.6.x < 3.6.4 Multiple Vulnerabilities

Binary data 5580.prm...

9.3CVSS7.3AI score0.11418EPSS
Exploits6References17
RedHat Linux
RedHat Linux
added 2010/06/22 9:57 p.m.7 views

Content-Disposition: attachment ignored if Content-Type: multipart also present

Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both "Content-Disposition: attachment" and "Content-Type: multipart" are present in HTTP headers, which allows remote attackers to conduct cross-site scripting XSS...

4.3CVSS7.3AI score0.0207EPSS
Exploits0References4
Prion
Prion
added 2010/03/25 9:0 p.m.15 views

Design/Logic Flaw

The nsDocument::MaybePreLoadImage function in content/base/src/nsDocument.cpp in the image-preloading implementation in Mozilla Firefox 3.6 before 3.6.2 does not apply scheme restrictions and policy restrictions to the image's URL, which might allow remote attackers to cause a denial of service...

7.6CVSS7.2AI score0.12406EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2010/03/25 9:0 p.m.20 views

Cross site scripting

Mozilla Firefox 3.6 before 3.6.2 does not offer plugins the expected window.location protection mechanism, which might allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting XSS attacks via vectors that are specific to each affected plugin...

4.3CVSS5.8AI score0.01566EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2010/03/25 8:31 p.m.102 views

CVE-2010-0168

Technical details for CVE-2010-0168 are not provided in the supplied documents. The materials reference Firefox historical fixes and related advisories but do not describe affected components, root cause, impact, or remediation for this CVE. Monitor for updates.

7.6CVSS8.9AI score0.12406EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCve
added 2010/03/25 12:0 a.m.32 views

CVE-2010-1121

Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collectio...

10CVSS7.5AI score0.05773EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2010/03/23 12:0 a.m.26 views

Mozilla Firefox Unspecified Vulnerability (Windows)

The host is running Mozilla Firefox and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: secpodfirefoxunspecifiedvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Mozilla Firefox Unspecified Vulnerability Windows Authors: Madhuri D Copyright: Copyright c 2010 SecPod,...

9.3CVSS1.5AI score0.08816EPSS
Exploits2References3
Prion
Prion
added 2010/03/19 9:30 p.m.17 views

Integer overflow

Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...

9.3CVSS8.1AI score0.08816EPSS
Exploits2References11Affected Software1
exploitpack
exploitpack
added 2010/01/24 12:0 a.m.19 views

Mozilla Firefox 3.6 - XML Parser Memory Corruption (PoC) Denial of Service

Mozilla Firefox 3.6 - XML Parser Memory Corruption PoC Denial of Service Firefox 3.6XML parsermemory corruption PoC/Dos by d3b4g From tiny islands of maldivies Tested: version 3.6 Tested on windows XP SP3 20-01-2010 This same bug was in early version of firfox,found by Wojciech Pawlikowski This i...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/24 12:0 a.m.29 views

Mozilla Firefox 3.6 - XML Parser Memory Corruption (PoC) / Denial of Service

Firefox 3.6XML parsermemory corruption PoC/Dos by d3b4g From tiny islands of maldivies Tested: version 3.6 Tested on windows XP SP3 20-01-2010 This same bug was in early version of firfox,found by Wojciech Pawlikowski This is just a update. This vulnerability cause a denial of service memory...

7.4AI score
Exploits0
Rows per page
Query Builder