|
286991
|
- |
|
mozilla
|
firefox
|
The Public Key Pinning (PKP) implementation in Mozilla Firefox before 33.0 does not properly consider the connection-coalescing behavior of SPDY and HTTP/2 in the case of a shared IP address, which a…
|
CWE-310
Cryptographic Issues
|
CVE-2014-1582
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286992
|
- |
|
mozilla
|
thunderbird
firefox
|
Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to execute arbitrary cod…
|
NVD-CWE-Other
|
CVE-2014-1581
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286993
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 33.0 does not properly initialize memory for GIF images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers …
|
CWE-200
Information Exposure
|
CVE-2014-1580
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286994
|
- |
|
mozilla
|
firefox
thunderbird
|
The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service (out-of-bounds write and appl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1578
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286995
|
- |
|
mozilla
|
firefox
thunderbird
|
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote …
|
NVD-CWE-Other
|
CVE-2014-1577
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286996
|
- |
|
mozilla
|
thunderbird
firefox
|
Heap-based buffer overflow in the nsTransformedTextRun function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1576
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286997
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 33.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1575
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286998
|
- |
|
mozilla
|
firefox
thunderbird
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allow remote attackers to cause a denial of s…
|
NVD-CWE-noinfo
|
CVE-2014-1574
|
2024-11-21 11:04 |
2014-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286999
|
- |
|
fedoraproject
mozilla
|
fedora
bugzilla
|
Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 does not ensure that a scalar context is used for certain CGI parameters,…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1573
|
2024-11-21 11:04 |
2014-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287000
|
- |
|
fedoraproject
mozilla
|
fedora
bugzilla
|
The confirm_create_account function in the account-creation feature in token.cgi in Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x be…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1572
|
2024-11-21 11:04 |
2014-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
