|
288411
|
- |
|
remotesensing
|
libtiff
|
Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1960
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288412
|
- |
|
mozilla
|
firefox
|
The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1700
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288413
|
- |
|
mozilla
|
firefox
|
The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof t…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1699
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288414
|
- |
|
mozilla
|
firefox
|
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1698
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288415
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly restrict use of Defa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1697
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288416
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote attackers to conduct clickjacking attacks via a crafted web site that uses the HTTP…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1696
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288417
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1695
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288418
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The PreserveWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly handle the lack …
|
CWE-20
Improper Input Validation
|
CVE-2013-1694
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288419
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to read pixel v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1693
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288420
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD requ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1692
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
