|
276561
|
- |
|
mozilla
opensuse
|
firefox
opensuse
seamonkey
|
The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in the Web Audio API implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly restrict timeline ope…
|
CWE-362
Race Condition
|
CVE-2014-8640
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276562
|
- |
|
mozilla
|
seamonkey
firefox
firefox_esr
thunderbird
|
Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 (aka Proxy …
|
NVD-CWE-Other
|
CVE-2014-8639
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276563
|
- |
|
mozilla
|
firefox
firefox_esr
thunderbird
seamonkey
|
The navigator.sendBeacon implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 omits the CORS Origin header, which allows rem…
|
CWE-352
Origin Validation Error
|
CVE-2014-8638
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276564
|
- |
|
mozilla
|
seamonkey
firefox
|
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted…
|
CWE-200
Information Exposure
|
CVE-2014-8637
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276565
|
- |
|
mozilla
|
firefox
seamonkey
|
The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly interact with a DOM object that has a named getter, which might allow remote attackers to exe…
|
CWE-94
Code Injection
|
CVE-2014-8636
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276566
|
- |
|
mozilla
|
seamonkey
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 allow remote attackers to cause a denial of service (memory corruption and applicat…
|
NVD-CWE-noinfo
|
CVE-2014-8635
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276567
|
- |
|
mozilla
|
firefox
firefox_esr
seamonkey
thunderbird
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 allow remote attackers to c…
|
NVD-CWE-noinfo
|
CVE-2014-8634
|
2024-11-21 11:19 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276568
|
- |
|
jce-tech
|
video_niche_script
|
Multiple cross-site scripting (XSS) vulnerabilities in view.php in JCE-Tech PHP Video Script (aka Video Niche Script) 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) vid…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8752
|
2024-11-21 11:19 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276569
|
- |
|
schneider_electric
|
proclima
|
Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8514
|
2024-11-21 11:19 |
2014-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276570
|
- |
|
schneider_electric
|
proclima
|
Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8513
|
2024-11-21 11:19 |
2014-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
