|
274541
|
- |
|
mozilla
|
firefox
|
Use-after-free vulnerability in the HTMLVideoElement interface in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via crafted JavaScript…
|
NVD-CWE-Other
|
CVE-2015-4509
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274542
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 41.0, when reader mode is enabled, allows remote attackers to spoof the relationship between address-bar URLs and web content via a crafted web site.
|
CWE-254
7PK - Security Features
|
CVE-2015-4508
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274543
|
- |
|
mozilla
|
firefox
|
The SavedStacks class in the JavaScript implementation in Mozilla Firefox before 41.0, when the Debugger API is enabled, allows remote attackers to cause a denial of service (getSlotRef assertion fai…
|
NVD-CWE-noinfo
|
CVE-2015-4507
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274544
|
- |
|
mozilla
|
firefox
|
Buffer overflow in the vp9_init_context_buffers function in libvpx, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3, allows remote attackers to execute arbitrary code via a cr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4506
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274545
|
- |
|
mozilla
|
firefox
|
updater.exe in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows allows local users to write to arbitrary files by conducting a junction attack and waiting for an update operati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4505
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274546
|
- |
|
mozilla
|
firefox
|
The lut_inverse_interp16 function in the QCMS library in Mozilla Firefox before 41.0 allows remote attackers to obtain sensitive information or cause a denial of service (buffer over-read and applica…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4504
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274547
|
- |
|
mozilla
|
firefox
|
The TCP Socket API implementation in Mozilla Firefox before 41.0 mishandles array boundaries that were established with a navigator.mozTCPSocket.open method call and send method calls, which allows r…
|
CWE-200
Information Exposure
|
CVE-2015-4503
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274548
|
- |
|
mozilla
|
firefox
|
js/src/proxy/Proxy.cpp in Mozilla Firefox before 41.0 mishandles certain receiver arguments, which allows remote attackers to bypass intended window access restrictions via a crafted web site.
|
CWE-254
7PK - Security Features
|
CVE-2015-4502
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274549
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4501
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274550
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow remote attackers to cause a denial of service (memory corruption and a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4500
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
