|
280371
|
- |
|
mozilla
|
firefox
|
updater.exe in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows allows local users to write to arbitrary files by conducting a junction attack and waiting for an update operati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4505
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280372
|
- |
|
mozilla
|
firefox
|
The lut_inverse_interp16 function in the QCMS library in Mozilla Firefox before 41.0 allows remote attackers to obtain sensitive information or cause a denial of service (buffer over-read and applica…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4504
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280373
|
- |
|
mozilla
|
firefox
|
The TCP Socket API implementation in Mozilla Firefox before 41.0 mishandles array boundaries that were established with a navigator.mozTCPSocket.open method call and send method calls, which allows r…
|
CWE-200
Information Exposure
|
CVE-2015-4503
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280374
|
- |
|
mozilla
|
firefox
|
js/src/proxy/Proxy.cpp in Mozilla Firefox before 41.0 mishandles certain receiver arguments, which allows remote attackers to bypass intended window access restrictions via a crafted web site.
|
CWE-254
7PK - Security Features
|
CVE-2015-4502
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280375
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4501
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280376
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow remote attackers to cause a denial of service (memory corruption and a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4500
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280377
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demo…
|
CWE-254
7PK - Security Features
|
CVE-2015-4476
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280378
|
- |
|
f5
|
big-ip_analytics
big-ip_protocol_security_module
big-ip_link_controller
big-ip_edge_gateway
big-ip_application_security_manager
big-ip_global_traffic_manager
big-ip_advanced_firewal…
|
The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and …
|
CWE-20
Improper Input Validation
|
CVE-2015-4638
|
2024-11-21 11:31 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280379
|
- |
|
mozilla
|
bugzilla
|
Util.pm in Bugzilla 2.x, 3.x, and 4.x before 4.2.15, 4.3.x and 4.4.x before 4.4.10, and 5.x before 5.0.1 mishandles long e-mail addresses during account registration, which allows remote attackers to…
|
CWE-20
Improper Input Validation
|
CVE-2015-4499
|
2024-11-21 11:31 |
2015-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280380
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 7.1P20 and 7.2.x before 7.2P04 does not properly verify authorization for dm_job object access, which allows remote authenticated users to obtain superuser privil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4544
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
