Lucene search
+L

439 matches found

Cvelist
Cvelist
added 2020/01/08 9:14 p.m.28 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8AI score0.01892EPSS
Exploits1References12
Debian CVE
Debian CVE
added 2020/01/08 9:14 p.m.43 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS10AI score0.01892EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2020/01/08 9:14 p.m.63 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS9AI score0.01892EPSS
Exploits1
CVE
CVE
added 2020/01/08 9:14 p.m.300 views

CVE-2019-17005

The CVE-2019-17005 issue is a memory safety vulnerability in Mozilla’s plain text serializer where a fixed-size array for the number of elements could overflow, causing memory corruption and a potentially exploitable crash. Affected products include Thunderbird, Firefox ESR, and Firefox (all ver...

8.8CVSS8.7AI score0.01892EPSS
Exploits1References12Affected Software3
Cent OS
Cent OS
added 2019/12/24 3:58 p.m.213 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2019:4148 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS7.2AI score0.01976EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2019/12/12 12:0 a.m.42 views

CentOS 6 : firefox (CESA-2019:4108)

An update for firefox is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS8.2AI score0.01976EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2019/12/12 12:0 a.m.64 views

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20191210)

This update upgrades Thunderbird to version 68.3.0. Security Fixes : - Mozilla: Use-after-free in worker destruction CVE-2019-17008 - Mozilla: Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3 CVE-2019-17012 - Mozilla: Buffer overflow in plain text serializer CVE-2019-17005 - Mozilla:...

8.8CVSS8.2AI score0.01976EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2019/12/11 10:35 a.m.6 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/12/10 8:39 p.m.6 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/12/10 12:3 p.m.6 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
Veracode
Veracode
added 2019/12/06 12:16 a.m.38 views

Denial Of Service (DoS)

Mozilla firefox is vulnerable to denial of service DoS. The vulnerability exists through a buffer overflow issue in plain text serializer...

8.8CVSS3.2AI score0.01892EPSS
Exploits1References15Affected Software5
RedHat Linux
RedHat Linux
added 2019/12/05 6:26 p.m.5 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/12/05 4:33 p.m.8 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/12/05 4:10 p.m.11 views

Mozilla: Buffer overflow in plain text serializer

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.4AI score0.01892EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2019/12/04 12:0 a.m.32 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.2AI score0.01892EPSS
Exploits1References8
OSV
OSV
added 2019/12/04 12:0 a.m.3 views

UBUNTU-CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS7.3AI score0.01892EPSS
Exploits1References9
Kaspersky
Kaspersky
added 2019/11/09 12:0 a.m.58 views

KLA11613 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Incorrect temporary files access configuration of Mozilla...

8.8CVSS9.1AI score0.02994EPSS
Exploits3References3
0day.today
0day.today
added 2019/10/02 12:0 a.m.67 views

PHP 7.1 < 7.3 - (json serializer) Disable Functions Bypass Exploit

Exploit for multiple platform in category web applications = 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2019/09/28 12:0 a.m.30 views

PHP 7.1 7.3 - json serializer disable_functions Bypass

PHP 7.1 7.3 - json serializer disablefunctions Bypass = 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/28 12:0 a.m.257 views

PHP 7.1 &lt; 7.3 - &#039;json serializer&#039; disable_functions Bypass

= 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return strlengetclass$spl1; the real deal public function leak2$addr, $p...

7.4AI score
Exploits0
Rows per page
Query Builder