|
295371
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a …
|
CWE-94
Code Injection
|
CVE-2011-3655
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295372
|
- |
|
mozilla
|
firefox
thunderbird
|
The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly handle links from SVG mpath elements to non-SVG elements, which allows remote attackers to cause a denial…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3654
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295373
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do not properly interact with the GPU memory behavior of a certain driver for Intel integrated GPUs, which allows remote attackers to…
|
CWE-200
Information Exposure
|
CVE-2011-3653
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295374
|
- |
|
mozilla
|
firefox
thunderbird
|
The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly allocate memory, which allows remote attackers to cause a denial of service (memory corruption and applic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3652
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295375
|
- |
|
mozilla
|
thunderbird
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 7.0 and Thunderbird 7.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or …
|
NVD-CWE-noinfo
|
CVE-2011-3651
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295376
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3650
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295377
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, a…
|
CWE-200
Information Exposure
|
CVE-2011-3649
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295378
|
- |
|
mozilla
|
firefox
thunderbird
|
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3648
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295379
|
- |
|
mozilla
|
firefox
thunderbird
|
The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it ea…
|
CWE-20
Improper Input Validation
|
CVE-2011-3647
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295380
|
- |
|
apache
|
http_server
|
Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to ga…
|
CWE-189
Numeric Errors
|
CVE-2011-3607
|
2024-11-21 10:30 |
2011-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
