Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2020/04/07 8:53 a.m.4 views

Mozilla: Use-after-free while running the nsDocShell destructor

A flaw was found in Mozilla Firefox. A race condition can occur while running the nsDocShell destructor causing a use-after-free memory issue. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.1CVSS7.2AI score0.02978EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2016/03/16 5:36 p.m.5 views

graphite2: multiple font parsing vulnerabilities (Mozilla MFSA 2016-37)

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

8.8CVSS7.5AI score0.02718EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/10/01 1:25 p.m.8 views

Mozilla: Vulnerabilities found through code inspection (MFSA 2015-112)

The InitTextures function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.5AI score0.03467EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2010/10/19 11:6 p.m.4 views

Mozilla unsafe library loading flaw

A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 on Linux places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan hor...

6.9CVSS7.3AI score0.00286EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/11/26 10:53 p.m.9 views

Mozilla Cross-site Request Forgery flaw

Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 sets the Referer header to the window or frame in which script is running, instead of the address of the content that initiated the script, which allows remote attackers to spoof HTTP Referer headers and bypass Referer-based CSRF protecti...

4.3CVSS5.8AI score0.01469EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/10/19 3:58 p.m.7 views

security flaw

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute...

4.3CVSS5.8AI score0.03017EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/07/19 2:46 a.m.7 views

security flaw

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME 1 during the load stage or 2 in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystrok...

4.3CVSS7.7AI score0.02774EPSS
Exploits1References4
Rows per page
Query Builder