|
265371
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
|
Use-after-free vulnerability in the nsFrameManager::CaptureFrameState function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute …
|
CWE-416
Use After Free
|
CVE-2016-5274
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265372
|
8.8 |
HIGH
Network
|
mozilla
|
firefox
|
The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the accessibility implementation in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code via a crafted web …
|
CWE-284
Improper Access Control
|
CVE-2016-5273
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265373
|
8.8 |
HIGH
Network
|
mozilla
|
firefox
|
The nsImageGeometryMixin class in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 does not properly perform a cast of an unspecified variable during handling of INPU…
|
CWE-20
Improper Input Validation
|
CVE-2016-5272
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265374
|
6.5 |
MEDIUM
Network
|
mozilla
|
firefox
|
The PropertyProvider::GetSpacingInternal function in Mozilla Firefox before 49.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via text runs in conju…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5271
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265375
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
|
Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers …
|
CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
|
CVE-2016-5270
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265376
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4 and Thunderbird < 45.4 allow remote attackers to cause a denial of service (mem…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5257
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265377
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 49.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5256
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265378
|
7.8 |
HIGH
Local
|
lenovo
|
bios
|
The BIOS for Lenovo ThinkCentre E93, M6500t/s, M6600, M6600q, M6600t/s, M73p, M800, M83, M8500t/s, M8600t/s, M900, M93, and M93P devices; ThinkServer RQ940, RS140, TS140, TS240, TS440, and TS540 devi…
|
CWE-254
7PK - Security Features
|
CVE-2016-5247
|
2024-11-21 11:53 |
2016-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265379
|
8.1 |
HIGH
Network
|
apache
|
zookeeper
|
Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the "cmd:" batch mode syntax, allows attackers to have unspecified impact via a long command str…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5017
|
2024-11-21 11:53 |
2016-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265380
|
6.1 |
MEDIUM
Network
|
fortinet
|
fortiwan
|
Cross-site scripting (XSS) vulnerability in Fortinet FortiWan (formerly AscernLink) before 4.2.5 allows remote attackers to inject arbitrary web script or HTML via the IP parameter to script/statisti…
|
CWE-79
Cross-site Scripting
|
CVE-2016-4969
|
2024-11-21 11:53 |
2016-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
