Lucene search

Veracode Vulnerability DatabaseVERACODE:11043

HistoryJan 15, 2019 - 8:56 a.m.

Remote Code Execution (RCE)

2019-01-1508:56:05

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.013 Low

EPSS

Percentile

85.7%

JSON

firefox is vulnerable to remote code execution (RCE) attacks. The vulnerability exists through multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CPENameOperatorVersion
firefoxeq3.6.17__1.el6_0
firefoxeq10.0.8__1.el6_3
firefoxeq10.0.5__1.el6_2
firefoxeq1.5.0.12__15.el5_1
firefoxeq3.6.14__4.el6_0
firefoxeq17.0.10__1.el6_4
firefoxeq3.6.26__1.el5_7
firefoxeq3.0.11__2.el5_3
firefoxeq3.6.11__2.el5
firefoxeq1.5.0.12__7.el5

Name	Operator	Version
firefox	eq	3.6.17__1.el6_0
firefox	eq	10.0.8__1.el6_3
firefox	eq	10.0.5__1.el6_2
firefox	eq	1.5.0.12__15.el5_1
firefox	eq	3.6.14__4.el6_0
firefox	eq	17.0.10__1.el6_4
firefox	eq	3.6.26__1.el5_7
firefox	eq	3.0.11__2.el5_3
firefox	eq	3.6.11__2.el5
firefox	eq	1.5.0.12__7.el5

Rows per page:

1-10 of 3621

References

download.novell.com/Download?buildid=VYQsgaFpQ2k

download.novell.com/Download?buildid=Y2fux-JW1Qc

lists.fedoraproject.org/pipermail/package-announce/2014-February/127966.html

lists.fedoraproject.org/pipermail/package-announce/2014-February/129218.html

lists.opensuse.org/opensuse-security-announce/2014-02/msg00004.html

lists.opensuse.org/opensuse-security-announce/2014-02/msg00005.html

lists.opensuse.org/opensuse-security-announce/2014-02/msg00010.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html

osvdb.org/102864

rhn.redhat.com/errata/RHSA-2014-0132.html

rhn.redhat.com/errata/RHSA-2014-0133.html

secunia.com/advisories/56706

secunia.com/advisories/56761

secunia.com/advisories/56763

secunia.com/advisories/56767

secunia.com/advisories/56787

secunia.com/advisories/56858

secunia.com/advisories/56888

www.debian.org/security/2014/dsa-2858

www.mozilla.org/security/announce/2014/mfsa2014-01.html

www.mozilla.org/security/known-vulnerabilities/firefoxESR.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.securityfocus.com/bid/65317

www.securitytracker.com/id/1029717

www.securitytracker.com/id/1029720

www.securitytracker.com/id/1029721

www.ubuntu.com/usn/USN-2102-1

www.ubuntu.com/usn/USN-2102-2

www.ubuntu.com/usn/USN-2119-1

8pecxstudios.com/?page_id=44080

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/show_bug.cgi?id=921470

bugzilla.mozilla.org/show_bug.cgi?id=925896

bugzilla.mozilla.org/show_bug.cgi?id=936808

bugzilla.mozilla.org/show_bug.cgi?id=937132

bugzilla.mozilla.org/show_bug.cgi?id=937697

bugzilla.mozilla.org/show_bug.cgi?id=945334

bugzilla.mozilla.org/show_bug.cgi?id=945939

bugzilla.mozilla.org/show_bug.cgi?id=950000

bugzilla.mozilla.org/show_bug.cgi?id=950438

bugzilla.mozilla.org/show_bug.cgi?id=951366

bugzilla.mozilla.org/show_bug.cgi?id=953114

exchange.xforce.ibmcloud.com/vulnerabilities/90899

rhn.redhat.com/errata/RHSA-2014-0132.html

security.gentoo.org/glsa/201504-01

0.013 Low

EPSS

Percentile

85.7%

JSON

Related for VERACODE:11043