Lucene search
K

28 matches found

Debian CVE
Debian CVE
added 2016/03/13 6:0 p.m.36 views

CVE-2016-1961

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574...

8.8CVSS10AI score0.02901EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/03/09 5:11 a.m.7 views

Mozilla: Use-after-free in SetBody (MFSA 2016-24)

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574...

8.8CVSS7.8AI score0.02901EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2016/03/08 12:0 a.m.21 views

CVE-2016-1961

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574...

8.8CVSS7.6AI score0.02901EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/12/02 11:42 p.m.4 views

Mozilla: Use-after-free during HTML5 parsing (MFSA 2014-87)

Use-after-free vulnerability in the nsHtml5TreeOperation function in xul.dll in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code by adding a second root element to an HTML5 document duri...

6.8CVSS7.3AI score0.03377EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/12/02 10:45 p.m.11 views

Mozilla: Use-after-free during HTML5 parsing (MFSA 2014-87)

Use-after-free vulnerability in the nsHtml5TreeOperation function in xul.dll in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code by adding a second root element to an HTML5 document duri...

6.8CVSS7.3AI score0.03377EPSS
Exploits0References5
OSV
OSV
added 2014/12/02 12:0 a.m.6 views

UBUNTU-CVE-2014-1592

Use-after-free vulnerability in the nsHtml5TreeOperation function in xul.dll in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code by adding a second root element to an HTML5 document duri...

6.8CVSS7.3AI score0.03377EPSS
Exploits0References5
OSV
OSV
added 2014/04/17 2:55 p.m.4 views

UBUNTU-CVE-2014-0054

The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8 and 4.0.0 before 4.0.2 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML Extern...

6.8CVSS7.4AI score0.91354EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/06/25 8:10 p.m.5 views

Mozilla: Memory corruption found using Address Sanitizer (MFSA 2013-50)

Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a denial of service heap memory...

9.3CVSS7.8AI score0.03537EPSS
Exploits0References5
Rows per page
Query Builder