|
291051
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1695
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291052
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The PreserveWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly handle the lack …
|
CWE-20
Improper Input Validation
|
CVE-2013-1694
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291053
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to read pixel v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1693
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291054
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD requ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1692
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291055
|
- |
|
mozilla
|
firefox
|
The Profiler implementation in Mozilla Firefox before 22.0 parses untrusted data during UI rendering, which allows user-assisted remote attackers to execute arbitrary JavaScript code via a crafted we…
|
CWE-94
Code Injection
|
CVE-2013-1688
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291056
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x befor…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1687
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291057
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the mozilla::ResetDir function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows…
|
CWE-399
Resource Management Errors
|
CVE-2013-1686
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291058
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.…
|
CWE-399
Resource Management Errors
|
CVE-2013-1685
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291059
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and …
|
CWE-399
Resource Management Errors
|
CVE-2013-1684
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291060
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 22.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
NVD-CWE-noinfo
|
CVE-2013-1683
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
