CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

SUSE CVE•added 2023/02/15 5:40 a.m.•1 views

SUSE CVE-2013-1704

Use-after-free vulnerability in the nsINode::GetParentNode function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption and application crash via vectors involving a DOM modification at the...

9.3CVSS9.1AI score0.04703EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 5:7 a.m.•3 views

SUSE CVE-2016-1961

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574...

8.8CVSS7.8AI score0.00749EPSS

Exploits0References14

OpenVAS•added 2021/11/11 12:0 a.m.•20 views

Mozilla Firefox Security Advisory (MFSA2013-64) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.3CVSS6.4AI score0.04703EPSS

Exploits0References3

OpenVAS•added 2021/04/19 12:0 a.m.•22 views

SUSE: Security Advisory (SUSE-SU-2016:0727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.86455EPSS

Exploits9References4

Tenable Nessus•added 2016/07/11 12:0 a.m.•43 views

openSUSE Security Update : Mozilla Thunderbird (openSUSE-2016-848)

This update contains Mozilla Thunderbird 45.2. boo983549 It fixes security issues mostly affecting the e-mail program when used in a browser context, such as viewing a web page or HTMl formatted e-mail. The following vulnerabilities were fixed : - CVE-2016-2818, CVE-2016-2815: Memory safety bugs...

10CVSS7.2AI score0.86455EPSS

Exploits9References36

BDU FSTEC•added 2016/03/31 12:0 a.m.•0 views

The vulnerability in the Thunderbird email client, as well as in the Firefox and Firefox ESR browsers, allows a hacker to execute arbitrary code.

The vulnerability of the nsHTMLDocument::SetBody function in the Thunderbird email client, as well as in Firefox and Firefox ESR browsers, is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by using a incorrect root...

6.8CVSS0.00749EPSS

Exploits0References5Affected Software3

Tenable Nessus•added 2016/03/28 12:0 a.m.•33 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2016-402)

MozillaThunderbird was updated to 38.7.0 to fix the following issues : - Update to Thunderbird 38.7.0 boo969894 - MFSA 2015-81/CVE-2015-4477 bmo1179484 Use-after-free in MediaStream playback - MFSA 2015-136/CVE-2015-7207 bmo1185256 Same-origin policy violation using performance.getEntries and...

10CVSS7.4AI score0.86455EPSS

Exploits9References28

RedHat Linux•added 2016/03/16 5:36 p.m.•4 views

Mozilla: Use-after-free in SetBody (MFSA 2016-24)

8.8CVSS7.8AI score0.00749EPSS

Exploits0References5

OSV•added 2016/03/13 6:59 p.m.•1 views

DEBIAN-CVE-2016-1961

8.8CVSS9AI score0.00749EPSS

Exploits0References1

Debian CVE•added 2016/03/13 6:0 p.m.•31 views

CVE-2016-1961

8.8CVSS10AI score0.00749EPSS

Exploits0

CNVD•added 2016/03/13 12:0 a.m.•1 views

Mozilla Firefox and Firefox ESR 'SetBody' function memory misreference vulnerability

Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A memory misreference vulnerability in the 'SetBody' function in the...

8.8CVSS9.3AI score0.00749EPSS

Exploits0References1

Zero Day Initiative•added 2016/03/11 12:0 a.m.•42 views

Mozilla Firefox nsHTMLDocument SetBody Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS2.5AI score0.00749EPSS

Exploits0References1

Tenable Nessus•added 2016/03/09 12:0 a.m.•43 views

FreeBSD : mozilla -- multiple vulnerabilities (2225c5b4-1e5a-44fc-9920-b3201c384a15)

Mozilla Foundation reports : MFSA 2016-16 Miscellaneous memory safety hazards rv:45.0 / rv:38.7 MFSA 2016-17 Local file overwriting and potential privilege escalation through CSP reports MFSA 2016-18 CSP reports fail to strip location information for embedded iframe pages MFSA 2016-19 Linux video...

10CVSS7.5AI score0.86455EPSS

Exploits8References42

ArchLinux•added 2016/03/09 12:0 a.m.•50 views

firefox: multiple issues

CVE-2016-1952 CVE-2016-1953 arbitrary code execution Mozilla developers fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough...

10CVSS9.8AI score0.86455EPSS

Exploits9References39

Mozilla•added 2016/03/08 12:0 a.m.•44 views

Use-after-free in SetBody — Mozilla

Security researcher lokihardt, working with HP's Zero Day Initiative, reported a use-after-free issue in the SetBody function of HTMLDocument. This results in a potentially exploitable crash...

8.8CVSS0.9AI score0.00749EPSS

Exploits0References2Affected Software3

OSV•added 2016/03/08 12:0 a.m.•0 views

UBUNTU-CVE-2016-1961

8.8CVSS7.7AI score0.00749EPSS

Exploits0References5