|
291891
|
- |
|
fedoraproject
mozilla
|
fedora
bugzilla
|
Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 does not ensure that a scalar context is used for certain CGI parameters,…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1573
|
2024-11-21 11:04 |
2014-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291892
|
- |
|
fedoraproject
mozilla
|
fedora
bugzilla
|
The confirm_create_account function in the account-creation feature in token.cgi in Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x be…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1572
|
2024-11-21 11:04 |
2014-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291893
|
- |
|
mozilla
fedoraproject
|
bugzilla
fedora
|
Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 allows remote authenticated users to obtain sensitive private-comment inf…
|
CWE-200
Information Exposure
|
CVE-2014-1571
|
2024-11-21 11:04 |
2014-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291894
|
- |
|
google
mozilla
|
chrome
network_security_services
seamonkey
firefox_esr
firefox
thunderbird
|
Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x before 3.17.1, as used in Mozilla Firefox before 32.0.3, Mozilla Firefox ESR 24.x before 24.8.1 and 31.x befo…
|
CWE-310
Cryptographic Issues
|
CVE-2014-1568
|
2024-11-21 11:04 |
2014-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291895
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1391
|
2024-11-21 11:04 |
2014-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291896
|
- |
|
mozilla
|
firefox
firefox_esr
thunderbird
|
Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Firefox before 32.0, Firefox ESR 24.x before 24.8 and 31.x before 31.1, and Thunderbird 24.x before 24.8 and 31.x before 31.1 allows…
|
NVD-CWE-Other
|
CVE-2014-1567
|
2024-11-21 11:04 |
2014-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291897
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1566
|
2024-11-21 11:04 |
2014-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291898
|
- |
|
mozilla
|
firefox
thunderbird
|
The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 does not properly crea…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1565
|
2024-11-21 11:04 |
2014-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291899
|
- |
|
opensuse
mozilla
|
evergreen
opensuse
firefox
thunderbird
|
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do not properly initialize memory for GIF rendering, which allows remote attackers to obtain sensitive info…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2014-1564
|
2024-11-21 11:04 |
2014-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291900
|
- |
|
opensuse
oracle
mozilla
|
evergreen
opensuse
solaris
firefox
thunderbird
|
Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers t…
|
CWE-416
Use After Free
|
CVE-2014-1563
|
2024-11-21 11:04 |
2014-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
