|
306441
|
- |
|
mozilla
|
firefox
seamonkey
|
Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox before 7.0 and SeaMonkey before 2.4, does not validate the return value of a GrowAtomTable function call, which allows remote a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3002
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306442
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent manual add-on installation in response to the holding of the Enter key, which allows user-assisted remot…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3001
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306443
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not properly handle HTTP responses that contain multiple Location, Content-Length, or Content-Disp…
|
CWE-94
Code Injection
|
CVE-2011-3000
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306444
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6.0, and SeaMonkey before 2.3 do not properly handle "location" as the name of a frame, which allows remote attackers to bypass the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2999
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306445
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (memory corruptio…
|
NVD-CWE-noinfo
|
CVE-2011-2997
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306446
|
- |
|
mozilla
|
firefox
|
Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute a…
|
NVD-CWE-noinfo
|
CVE-2011-2996
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306447
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denia…
|
NVD-CWE-noinfo
|
CVE-2011-2995
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306448
|
- |
|
openssl
|
openssl
|
The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows r…
|
CWE-399
Resource Management Errors
|
CVE-2011-3210
|
2024-11-21 10:29 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306449
|
- |
|
openssl
|
openssl
|
crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value co…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3207
|
2024-11-21 10:29 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306450
|
- |
|
mantisbt
|
mantisbt
|
Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow remote attackers to inject arbitrary web script or HTML via a parameter, as demonstrated by the pr…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2938
|
2024-11-21 10:29 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
