CVE-2019-11724

Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another site. This additional permission is unnecessary and is a potential vector for malicious attacks. This vulnerability affects Firefox 68...

CVE-2019-11724

Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another site. This additional permission is unnecessary and is a potential vector for malicious attacks. This vulnerability affects Firefox 68...

Chimein.mozilla.org Cross Site Scripting

Exploit Title: Mozilla.org sub-domain Stored-XSS - Reflected-XSS - HTTP Response Splitting Date: 03/04/2017 Author: Yann CAM @ Synetis - ASafety Vendor or Software Link: www.mozilla.org Version: / Category: Stored Cross Site Scripting / Reflected Cross Site Scripting / HTTP Response Splitting...

SUSE: Security Advisory for openssl-certs (SUSE-SU-2014:0025-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-0812

Mozilla Firefox before 37.0 does not require an HTTPS session for lightweight theme add-on installations, which allows man-in-the-middle attackers to bypass an intended user-confirmation requirement by deploying a crafted web site and conducting a DNS spoofing attack against a mozilla.org subdoma...

CVE-2015-0812

Mozilla Firefox before 37.0 does not require an HTTPS session for lightweight theme add-on installations, which allows man-in-the-middle attackers to bypass an intended user-confirmation requirement by deploying a crafted web site and conducting a DNS spoofing attack against a mozilla.org subdoma...

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-thunderbird-24.8.0-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For more...

Mozilla Products DOMAttrModified Memory Corruption Vulnerability - Windows

Mozilla Firefox/Thunderbird/Seamonkey is prone to out of bounds memory corruption vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Fedora 15 : firefox-6.0-1.fc15 / gnome-python2-extras-2.25.3-33.fc15 / mozvoikko-1.9.0-6.fc15 / etc (2011-11106)

Update to new upstream Firefox version 6.0, fixing multiple security issues detailed in the upstream advisory : - http://www.mozilla.org/security/announce/2011/mfsa2011-2 9.html This update also includes all packages depending on gecko-libs rebuilt against the new version of Firefox / XULRunner...

ZDI-10-048: Mozilla Firefox nsTreeContentView Dangling Pointer Remote Code Execution Vulnerability

ZDI-10-048: Mozilla Firefox nsTreeContentView Dangling Pointer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-048 April 2, 2010 -- CVE ID: CVE-2010-0176 -- Affected Vendors: Mozilla Firefox -- Affected Products: Mozilla Firefox 3.5.x -- Vulnerability Detail...

Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)

The remote host is missing updates announced in advisory GLSA 200605-09. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox畸形GIF文件拒绝服务漏洞

Mozilla Firefox是一款开放源代码的WEB浏览器。 Mozilla Firefox处理GIF文件存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 构建恶意GIF文件，诱使用户使用Firefox处理，可导致应用程序崩溃。 Mozilla Firefox 2.0 8 Mozilla Firefox 2.0 .9 Mozilla Firefox 2.0 .7 Mozilla Firefox 2.0 .6 Mozilla Firefox 2.0 .5 Mozilla Firefox 2.0 .4 Mozilla Firefox 2.0 .3 Mozilla Firefox...

Mozilla Firefox <= 2.0.0.7 Remote Denial of Service Exploit

No description provided by source. i WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Bug Title: Mozilla Firefox 2.0.0.7 Denial of Service Vendor URL: www.mozilla.org Version: = 2.0.0.7 Fix Available: Yes! Soloution: Update to 2.0.0.8...

Mozilla Firefox 2.0.0.7 - Remote Denial of Service

Mozilla Firefox 2.0.0.7 - Remote Denial of Service i WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Bug Title: Mozilla Firefox 2.0.0.7 Denial of Service Vendor URL: www.mozilla.org Version: & Bug Description To do this work we need 2 files Html,XML. Their codes was writt...

Fedora Core 5 : nss-3.11.3-0.5.fc5 (2006-979)

Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security...