Уязвимость браузеров Firefox, Firefox ESR и операционной системы Firefox OS, позволяющая нарушителю нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: HIGH (7.5)

References:

CVE-2015-4488

Published: 2015-08-11

BDU:2015-11138

Уязвимость браузеров Firefox, Firefox ESR и операционной системы Firefox OS, позволяющая нарушителю вызвать отказ в обслуживании или оказать иное воздействие на систему

Severity: HIGH (7.5)

References:

CVE-2015-4489

Published: 2015-08-11

BDU:2015-11139

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код при помощи объекта

Severity: HIGH (7.5)

References:

CVE-2015-4492

Published: 2015-08-11

BDU:2015-11140

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: CRITICAL (9.3)

References:

CVE-2015-4493

Published: 2015-08-11

BDU:2015-11241

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти политику разграничения доступа

Severity: MEDIUM (5.0)

References:

Published: 2015-08-11

BDU:2015-11243

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

Severity: MEDIUM (4.6)

References:

Published: 2015-08-11

BDU:2015-11244

Уязвимость браузера Firefox, позволяющая нарушителю проводить атаки типа "человек посередине"

Severity: MEDIUM (4.3)

References:

Published: 2015-08-11

BDU:2015-11245

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.0)

References:

Published: 2015-08-11

BDU:2015-11246

Уязвимость браузера Firefox, позволяющая нарушителю проводить межсайтовый скриптинг

Severity: MEDIUM (4.3)

References:

Published: 2015-08-06

BDU:2015-11248

Уязвимость операционной системы Firefox OS, браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти политику разграничения доступа, читать произвольные файлы и повысить свои привилегии

Severity: MEDIUM (4.3)

References:

Published: 2015-08-29

BDU:2015-11312

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти процедуру подтверждения действий пользователем при установке обновления

Severity: HIGH (7.5)

References:

CVE-2015-4498

Published: 2015-09-24

BDU:2015-11485

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-7180

Published: 2015-09-24

BDU:2015-11486

Уязвимость браузера Firefox, позволяющая нарушителю получить доступ к защищаемой информации

Severity: MEDIUM (4.3)

References:

CVE-2015-7327

Published: 2015-09-24

BDU:2015-11508

Уязвимости браузеров Firefox и Firefox ESR, позволяющие нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: HIGH (7.5)

References:

CVE-2015-4500

Published: 2015-09-24

BDU:2015-11509

Уязвимости браузера Firefox, позволяющие нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: HIGH (7.5)

References:

CVE-2015-4501

Published: 2015-09-24

BDU:2015-11510

Уязвимость браузера Firefox, позволяющая нарушителю обойти ограничения доступа к элементам окна

Severity: MEDIUM (4.3)

References:

CVE-2015-4502

Published: 2015-09-24

BDU:2015-11511

Уязвимость браузера Firefox, позволяющая нарушителю получить доступ к защищаемой информации из памяти процесса

Severity: MEDIUM (5.0)

References:

CVE-2015-4503

Published: 2015-09-24

BDU:2015-11512

Уязвимость браузера Firefox, позволяющая нарушителю получить доступ к защищаемой информации или вызвать отказ в обслуживании

Severity: MEDIUM (6.4)

References:

CVE-2015-4504

Published: 2015-09-24

BDU:2015-11514

Уязвимость браузера Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2015-4506

Published: 2015-09-24

BDU:2015-11515

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (5.1)

References:

CVE-2015-4507

Published: 2015-09-24

BDU:2015-11516

Уязвимость браузера Firefox, позволяющая нарушителю подменить содержимое окна

Severity: LOW (2.6)

References:

CVE-2015-4508

Published: 2015-09-24

BDU:2015-11517

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (7.5)

References:

CVE-2015-4509

Published: 2015-09-24

BDU:2015-11518

Уязвимость браузера Firefox, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

Severity: MEDIUM (6.8)

References:

CVE-2015-4510

Published: 2015-09-24

BDU:2015-11519

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2015-4511

Published: 2015-09-24

BDU:2015-11521

Уязвимость браузера Firefox, позволяющая нарушителю обойти механизм защиты ECMAScript 5 (ES5) API и выполнить произвольный код

Severity: CRITICAL (9.3)

References:

CVE-2015-4516

Published: 2015-09-24

BDU:2015-11522

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-4517

Published: 2015-09-24

BDU:2015-11523

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти существующие ограничения доступа и выполнить переход по заданному URL

Severity: MEDIUM (4.3)

References:

CVE-2015-4519

Published: 2015-09-24

BDU:2015-11524

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти механизм защиты CORS

Severity: MEDIUM (6.4)

References:

CVE-2015-4520

Published: 2015-09-24

BDU:2015-11525

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-4521

Published: 2015-09-24

BDU:2015-11526

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-4522

Published: 2015-09-24

BDU:2015-11532

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-7174

Published: 2015-09-24

BDU:2015-11533

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-7175

Published: 2015-09-24

BDU:2015-11534

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-7176

Published: 2015-09-24

BDU:2015-11535

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5)

References:

CVE-2015-7177

Published: 2015-11-05

BDU:2015-11981

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или оказать иное воздействие на систему

Severity: HIGH (7.5)

References:

CVE-2015-7199

Published: 2015-11-05

BDU:2015-11982

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или оказать иное воздействие

Severity: HIGH (7.5)

References:

CVE-2015-7198

Published: 2015-11-05

BDU:2015-11983

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2015-7196

Published: 2015-11-05

BDU:2015-11984

Уязвимость браузера Firefox, позволяющая нарушителю получить конфиденциальную информацию

Severity: MEDIUM (5.0)

References:

CVE-2015-7195

Published: 2015-11-05

BDU:2015-11985

Severity: HIGH (7.5)

References:

CVE-2015-7194

Published: 2015-11-05

BDU:2015-11989

Severity: MEDIUM (6.8)

References:

CVE-2015-7189

Published: 2015-11-05

BDU:2015-11990

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти правила ограничения домена и провести межсайтовое выполнение сценариев

Severity: HIGH (7.5)

References:

CVE-2015-7188

Published: 2015-11-05

BDU:2015-11991

Уязвимость браузера Firefox, позволяющая нарушителю провести межсайтовое выполнение сценариев

Severity: MEDIUM (4.3)

References:

CVE-2015-7187

Published: 2015-11-05

BDU:2015-11994

Severity: HIGH (7.5)

References:

CVE-2015-7183

Published: 2015-11-05

BDU:2015-11995

Severity: HIGH (7.5)

References:

CVE-2015-7181

Published: 2015-11-05

BDU:2015-12003

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти существующие ограничения доступа

Severity: MEDIUM (5.0)

References:

CVE-2015-7197

Published: 2015-11-05

BDU:2015-12004

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти существующие ограничения доступа

Severity: HIGH (7.5)

References:

CVE-2015-7193

Published: 2015-11-05

BDU:2015-12005

Severity: HIGH (7.5)

References:

CVE-2015-7182

Published: 2015-11-05

BDU:2015-12007

Уязвимость браузера Firefox, позволяющая нарушителю обойти существующие ограничения доступа и провести межсайтовое выполнение сценариев

Severity: MEDIUM (4.3)

References:

CVE-2015-4518

Published: 2015-11-05

BDU:2015-12008

Уязвимость браузера Firefox, позволяющая нарушителю получить доступ к защищаемой информации

Severity: MEDIUM (4.3)

References:

CVE-2015-4515

Published: 2015-11-05

BDU:2015-12009

Severity: HIGH (7.5)

References:

CVE-2015-4514

Published: 2015-11-05

BDU:2015-12010

Severity: HIGH (7.5)

References:

CVE-2015-4513

Published: 2015-12-16

BDU:2015-12238

Уязвимость браузера Firefox, позволяющая нарушителю получить конфиденциальную информацию, повысить свои привилегии или провести XSS-атаку

Severity: MEDIUM (4.0)

References:

CVE-2015-7223

Published: 2015-12-16

BDU:2015-12239

Severity: MEDIUM (6.8)

References:

CVE-2015-7222

Published: 2015-12-16

BDU:2015-12240

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: CRITICAL (10.0)

References:

CVE-2015-7221

Published: 2015-12-16

BDU:2015-12241

Severity: CRITICAL (10.0)

References:

CVE-2015-7220

Published: 2015-12-16

BDU:2015-12242

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.0)

References:

CVE-2015-7219

Published: 2015-12-16

BDU:2015-12243

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.0)

References:

CVE-2015-7218

Published: 2015-12-16

BDU:2015-12246

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю обойти существующую политику ограничения доступа

Severity: MEDIUM (5.0)

References:

CVE-2015-7214

Published: 2015-12-16

BDU:2015-12247

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2015-7213

Published: 2015-12-16

BDU:2015-12248

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (7.5)

References:

CVE-2015-7212

Published: 2015-12-16

BDU:2015-12249

Уязвимость браузера Firefox, позволяющая нарушителю получить конфиденциальную информацию или обойти существующую политику ограничения доступа

Severity: MEDIUM (5.0)

References:

CVE-2015-7207

Published: 2015-12-16

BDU:2015-12250

Уязвимость браузера Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании, получить конфиденциальную информацию или оказать другое воздействие

Severity: CRITICAL (10.0)

References:

CVE-2015-7205

Published: 2015-12-16

BDU:2015-12251

Severity: CRITICAL (10.0)

References:

CVE-2015-7203

Published: 2015-12-16

BDU:2015-12252

Severity: CRITICAL (10.0)

References:

CVE-2015-7202

Published: 2015-12-16

BDU:2015-12253

Severity: CRITICAL (10.0)

References:

CVE-2015-7201

Published: 2015-12-16

BDU:2016-00007

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (7.5)

References:

CVE-2015-7210

Published: 2016-01-19

BDU:2016-00136

Уязвимость программных платформ Jrockit и Java Platform, позволяющая нарушителю получить доступ на чтение данных или модифицировать данные

Severity: MEDIUM (4.0)

References:

CVE-2015-7575

Published: 2016-01-31

BDU:2016-00509

Severity: CRITICAL (10.0)

References:

CVE-2016-1930

Published: 2016-01-31

BDU:2016-00510

Severity: CRITICAL (10.0)

References:

CVE-2016-1931

Published: 2016-01-31

BDU:2016-00512

Severity: CRITICAL (10.0)

References:

CVE-2016-1946

Published: 2016-02-13

BDU:2016-00528

Уязвимость браузера Firefox, позволяющая нарушителю обойти существующую политику ограничения доступа

Severity: MEDIUM (6.8)

References:

CVE-2016-1949

Published: 2016-02-13

BDU:2016-00573

Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании, получить конфиденциальную информацию или выполнить произвольный код

Severity: CRITICAL (9.3)

References:

CVE-2016-1521

Published: 2016-03-13

BDU:2016-00718

Уязвимость браузеров Firefox ESR и Firefox, программного средства рендеринга Graphite 2, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: MEDIUM (6.8)

References:

CVE-2016-2802

Published: 2016-03-13

BDU:2016-00719

Severity: MEDIUM (6.8)

References:

CVE-2016-2801

Published: 2016-03-13

BDU:2016-00720

Severity: MEDIUM (6.8)

References:

CVE-2016-2800

Published: 2016-03-13

BDU:2016-00721

Severity: CRITICAL (9.3)

References:

CVE-2016-2799

Published: 2016-03-13

BDU:2016-00722

Severity: MEDIUM (6.8)

References:

CVE-2016-2798

Published: 2016-03-13

BDU:2016-00723

Severity: MEDIUM (6.8)

References:

CVE-2016-2797

Published: 2016-03-13

BDU:2016-00724

Severity: MEDIUM (6.8)

References:

CVE-2016-2796

Published: 2016-03-13

BDU:2016-00725

Severity: MEDIUM (6.8)

References:

CVE-2016-2795

Published: 2016-03-13

BDU:2016-00726

Severity: MEDIUM (6.8)

References:

CVE-2016-2794

Published: 2016-03-13

BDU:2016-00727

Severity: MEDIUM (6.8)

References:

CVE-2016-2793

Published: 2016-03-13

BDU:2016-00728

Severity: MEDIUM (6.8)

References:

CVE-2016-2792

Published: 2016-03-13

BDU:2016-00729

Severity: MEDIUM (6.8)

References:

CVE-2016-2791

Published: 2016-03-13

BDU:2016-00730

Уязвимость программного средства рендеринга Graphite 2, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: MEDIUM (6.8)

References:

CVE-2016-2790

Published: 2016-03-13

BDU:2016-00741

Уязвимость программного средства рендеринга Graphite 2, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-1977

Published: 2016-03-13

BDU:2016-00743

Уязвимости браузера Firefox, позволяющие нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: MEDIUM (6.8)

References:

CVE-2016-1975

Published: 2016-03-13

BDU:2016-00744

Уязвимость почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-1974

Published: 2016-03-13

BDU:2016-00745

Severity: CRITICAL (9.3)

References:

CVE-2016-1973

Published: 2016-03-13

BDU:2016-00749

Уязвимость программного средства рендеринга Graphite 2, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: MEDIUM (6.8)

References:

CVE-2016-1969

Published: 2016-03-13

BDU:2016-00750

Severity: MEDIUM (6.8)

References:

CVE-2016-1968

Published: 2016-03-13

BDU:2016-00751

Severity: MEDIUM (4.3)

References:

CVE-2016-1967

Published: 2016-03-13

BDU:2016-00752

Severity: MEDIUM (6.8)

References:

CVE-2016-1966

Published: 2016-03-13

BDU:2016-00753

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю подделать адресную строку

Severity: MEDIUM (4.3)

References:

CVE-2016-1965

Published: 2016-03-13

BDU:2016-00754

Severity: MEDIUM (6.8)

References:

CVE-2016-1964

Published: 2016-03-13

BDU:2016-00755

Уязвимость браузера Firefox, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

Severity: MEDIUM (4.4)

References:

CVE-2016-1963

Published: 2016-03-13

BDU:2016-00756

Уязвимость браузеров Firefox ESR и Firefox, позволяющая нарушителю выполнить произвольный код

Severity: CRITICAL (10.0)

References:

CVE-2016-1962

Published: 2016-03-13

BDU:2016-00757

Уязвимость почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-1961

Published: 2016-03-13

BDU:2016-00758

Severity: MEDIUM (6.8)

References:

CVE-2016-1960

Published: 2016-03-13

BDU:2016-00759

Severity: MEDIUM (6.8)

References:

CVE-2016-1959

Published: 2016-03-13

BDU:2016-00760

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю подделать адресную строку

Severity: MEDIUM (4.3)

References:

CVE-2016-1958

Published: 2016-03-13

BDU:2016-00761

Уязвимость почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.3)

References:

CVE-2016-1957

Published: 2016-03-13

BDU:2016-00763

Severity: MEDIUM (4.3)

References:

CVE-2016-1955

Published: 2016-03-13

BDU:2016-00764

Уязвимость почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

Severity: MEDIUM (6.8)

References:

CVE-2016-1954

Published: 2016-03-13

BDU:2016-00765

Уязвимости почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющие нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-1953

Published: 2016-03-13

BDU:2016-00766

Severity: MEDIUM (6.8)

References:

CVE-2016-1952

Published: 2015-12-16

BDU:2016-00969

Уязвимость браузера Firefox, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2015-7204

Published: 2015-12-16

BDU:2016-00970

Уязвимость браузера Firefox, позволяющая нарушителю получить конфиденциальную информацию

Severity: MEDIUM (5.0)

References:

CVE-2015-7208

Published: 2015-12-16

BDU:2016-00971

Уязвимость браузера Firefox, позволяющая нарушителю подменить веб-сайты

Severity: MEDIUM (5.0)

References:

CVE-2015-7211

Published: 2015-12-16

BDU:2016-00972

Уязвимость браузера Firefox, позволяющая нарушителю обойти существующую политику ограничения доступа и привести к раскрытию информации

Severity: MEDIUM (5.0)

References:

CVE-2015-7215

Published: 2016-04-30

BDU:2016-01138

Severity: CRITICAL (10.0)

References:

CVE-2016-2804

Published: 2016-04-30

BDU:2016-01147

Уязвимость браузера Firefox, позволяющая нарушителю внести изменения в настройки общего доступа

Severity: MEDIUM (4.3)

References:

CVE-2016-2820

Published: 2016-04-30

BDU:2016-01148

Уязвимость браузера Firefox, позволяющая нарушителю проводить UXSS-атаки

Severity: MEDIUM (4.3)

References:

CVE-2016-2817

Published: 2016-04-30

BDU:2016-01149

Уязвимость браузера Firefox, позволяющая нарушителю обойти защитный механизм CSP

Severity: MEDIUM (4.3)

References:

CVE-2016-2816

Published: 2016-04-30

BDU:2016-01150

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-2814

Published: 2016-04-30

BDU:2016-01152

Severity: MEDIUM (5.1)

References:

CVE-2016-2812

Published: 2016-04-30

BDU:2016-01153

Уязвимость браузера Firefox, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (6.8)

References:

CVE-2016-2811

Published: 2016-04-30

BDU:2016-01156

Severity: MEDIUM (5.1)

References:

CVE-2016-2808

Published: 2016-04-30

BDU:2016-01157

Severity: CRITICAL (10.0)

References:

CVE-2016-2807

Published: 2016-04-30

BDU:2016-01158

Severity: CRITICAL (10.0)

References:

CVE-2016-2806

Published: 2016-04-30

BDU:2016-01159

Severity: CRITICAL (10.0)

References:

CVE-2016-2805

Published: 2016-01-26

BDU:2018-00029

Уязвимость функции BufferSubData() почтового клиента Thunderbird и браузеров Firefox позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

CVE-2016-1935

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4473

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4474

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 40.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4475

The mozilla::AudioSink function in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 mishandles inconsistent sample formats within MP3 audio data, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a malformed file.

Severity: HIGH (7.5)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4477

Use-after-free vulnerability in the MediaStream playback feature in Mozilla Firefox before 40.0 allows remote attackers to execute arbitrary code via unspecified use of the Web Audio API.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4478

Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 do not impose certain ECMAScript 6 requirements on JavaScript object properties, which allows remote attackers to bypass the Same Origin Policy via the reviver parameter to the JSON.parse method.

Severity: MEDIUM (5.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4479

Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4480

Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding.

Severity: CRITICAL (9.3)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4482

mar_read.c in the Updater in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows local users to gain privileges or cause a denial of service (out-of-bounds write) via a crafted name of a Mozilla Archive (aka MAR) file.

Severity: MEDIUM (4.6)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4483

Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a mixed-content protection mechanism via a feed: URL in a POST request.

Severity: MEDIUM (4.3)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4484

The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to cause a denial of service (application crash) by leveraging the use of shared memory and accessing (1) an Atomics object or (2) a SharedArrayBuffer object.

Severity: MEDIUM (5.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4485

Heap-based buffer overflow in the resize_context_buffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4486

The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via malformed WebM video data.

Severity: CRITICAL (10.0)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4487

The nsTSubstring::ReplacePrep function in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, related to an "overflow."

Severity: HIGH (7.5)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4488

Use-after-free vulnerability in the StyleAnimationValue class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 allows remote attackers to have an unspecified impact by leveraging a StyleAnimationValue::operator self assignment.

Severity: HIGH (7.5)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4489

The nsTArray_Impl class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging a self assignment.

Severity: HIGH (7.5)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4490

The nsCSPHostSrc::permits function in dom/security/nsCSPUtils.cpp in Mozilla Firefox before 40.0 does not implement the Content Security Policy Level 2 exceptions for the blob, data, and filesystem URL schemes during wildcard source-expression matching, which might make it easier for remote attackers to conduct cross-site scripting (XSS) attacks by leveraging unexpected policy-enforcement behavior.

Severity: MEDIUM (4.3)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4492

Use-after-free vulnerability in the XMLHttpRequest::Open implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 might allow remote attackers to execute arbitrary code via a SharedWorker object that makes recursive calls to the open method of an XMLHttpRequest object.

Severity: HIGH (7.5)

References:

Published: 2015-08-16
Modified: 2024-11-21

CVE-2015-4493

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to CVE-2015-1539.

Severity: CRITICAL (9.3)

References:

Published: 2015-08-08
Modified: 2024-11-21

CVE-2015-4495

The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS before 2.2 allows remote attackers to bypass the Same Origin Policy, and read arbitrary files or gain privileges, via vectors involving crafted JavaScript code and a native setter, as exploited in the wild in August 2015.

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2015-08-29
Modified: 2024-11-21

CVE-2015-4498

The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a crafted data: URL and triggering navigation to an arbitrary http: or https: URL at a certain early point in the installation process.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4500

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4501

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 41.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4502

js/src/proxy/Proxy.cpp in Mozilla Firefox before 41.0 mishandles certain receiver arguments, which allows remote attackers to bypass intended window access restrictions via a crafted web site.

Severity: MEDIUM (4.3)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4503

The TCP Socket API implementation in Mozilla Firefox before 41.0 mishandles array boundaries that were established with a navigator.mozTCPSocket.open method call and send method calls, which allows remote TCP servers to obtain sensitive information from process memory by reading packet data, as demonstrated by availability of this API in a Firefox OS application.

Severity: MEDIUM (5.0)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4504

The lut_inverse_interp16 function in the QCMS library in Mozilla Firefox before 41.0 allows remote attackers to obtain sensitive information or cause a denial of service (buffer over-read and application crash) via crafted attributes in the ICC 4 profile of an image.

Severity: MEDIUM (6.4)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4506

Buffer overflow in the vp9_init_context_buffers function in libvpx, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3, allows remote attackers to execute arbitrary code via a crafted VP9 file.

Severity: MEDIUM (6.8)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4507

The SavedStacks class in the JavaScript implementation in Mozilla Firefox before 41.0, when the Debugger API is enabled, allows remote attackers to cause a denial of service (getSlotRef assertion failure and application exit) or possibly execute arbitrary code via a crafted web site.

Severity: MEDIUM (5.1)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4508

Mozilla Firefox before 41.0, when reader mode is enabled, allows remote attackers to spoof the relationship between address-bar URLs and web content via a crafted web site.

Severity: LOW (2.6)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4509

Use-after-free vulnerability in the HTMLVideoElement interface in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via crafted JavaScript code that modifies the URI table of a media element, aka ZDI-CAN-3176.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4510

Race condition in the WorkerPrivate::NotifyFeatures function in Mozilla Firefox before 41.0 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) by leveraging improper interaction between shared workers and the IndexedDB implementation.

Severity: MEDIUM (6.8)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4511

Heap-based buffer overflow in the nestegg_track_codec_data function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video.

Severity: MEDIUM (6.8)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-4513

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-4514

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-4515

Mozilla Firefox before 42.0, when NTLM v1 is enabled for HTTP authentication, allows remote attackers to obtain sensitive hostname information by constructing a crafted web site that sends an NTLM request and reads the Workstation field of an NTLM type 3 message.

Severity: MEDIUM (4.3)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4516

Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 (aka ES5) API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 APIs.

Severity: CRITICAL (9.3)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4517

NetworkUtils.cpp in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-4518

The Reader View implementation in Mozilla Firefox before 42.0 has an improper whitelist, which makes it easier for remote attackers to bypass the Content Security Policy (CSP) protection mechanism and conduct cross-site scripting (XSS) attacks via vectors involving SVG animations and the about:reader URL.

Severity: MEDIUM (4.3)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4519

Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow user-assisted remote attackers to bypass intended access restrictions and discover a redirect's target URL via crafted JavaScript code that executes after a drag-and-drop action of an image into a TEXTBOX element.

Severity: MEDIUM (4.3)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4520

Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow remote attackers to bypass CORS preflight protection mechanisms by leveraging (1) duplicate cache-key generation or (2) retrieval of a value from an incorrect HTTP Access-Control-* response header.

Severity: MEDIUM (6.4)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4521

The ConvertDialogOptions function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-4522

The nsUnicodeToUTF8::GetMaxLength function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors, related to an "overflow."

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7174

The nsAttrAndChildArray::GrowBy function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors, related to an "overflow."

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7175

The XULContentSinkImpl::AddText function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors, related to an "overflow."

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7176

The AnimationThread function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 uses an incorrect argument to the sscanf function, which might allow remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7177

The InitTextures function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7180

The ReadbackResultWriterD3D11::Run function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 misinterprets the return value of a function call, which might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7181

The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, improperly restricts access to an unspecified data structure, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data, related to a "use-after-poison" issue.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7182

Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7183

Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

Severity: HIGH (7.5)

References:

Published: 2015-10-18
Modified: 2024-11-21

CVE-2015-7184

The fetch API implementation in Mozilla Firefox before 41.0.2 does not restrict access to the HTTP response body in certain situations where user credentials are supplied but the CORS cross-origin request algorithm is improperly followed, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.

Severity: MEDIUM (6.8)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7187

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via inline JavaScript code that is executed within a third-party extension.

Severity: MEDIUM (4.3)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7188

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to bypass the Same Origin Policy for an IP address origin, and conduct cross-site scripting (XSS) attacks, by appending whitespace characters to an IP address string.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7189

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via vectors involving a CANVAS element and crafted JavaScript code.

Severity: MEDIUM (6.8)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7193

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly follow the CORS cross-origin request algorithm for the POST method in situations involving an unspecified Content-Type header manipulation, which allows remote attackers to bypass the Same Origin Policy by leveraging the lack of a preflight-request step.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7194

Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP archive.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7195

The URL parsing implementation in Mozilla Firefox before 42.0 improperly recognizes escaped characters in hostnames within Location headers, which allows remote attackers to obtain sensitive information via vectors involving a redirect.

Severity: MEDIUM (5.0)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7196

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4, when a Java plugin is enabled, allow remote attackers to cause a denial of service (incorrect garbage collection and application crash) or possibly execute arbitrary code via a crafted Java applet that deallocates an in-use JavaScript wrapper.

Severity: MEDIUM (6.8)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7197

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly control the ability of a web worker to create a WebSocket object, which allows remote attackers to bypass intended mixed-content restrictions via crafted JavaScript code.

Severity: MEDIUM (5.0)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7198

Buffer overflow in the rx::TextureStorage11 class in ANGLE, as used in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted texture data.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7199

The (1) AddWeightedPathSegLists and (2) SVGPathSegListSMILType::Interpolate functions in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lack status checking, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted SVG document.

Severity: HIGH (7.5)

References:

Published: 2015-11-05
Modified: 2024-11-21

CVE-2015-7200

The CryptoKey interface implementation in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lacks status checking, which allows attackers to have an unspecified impact via vectors related to a cryptographic key.

Severity: HIGH (7.5)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7201

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7202

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7203

Buffer overflow in the DirectWriteFontInfo::LoadFontFamilyData function in gfx/thebes/gfxDWriteFontList.cpp in Mozilla Firefox before 43.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted font-family name.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7204

Mozilla Firefox before 43.0 does not properly store the properties of unboxed objects, which allows remote attackers to execute arbitrary code via crafted JavaScript variable assignments.

Severity: MEDIUM (6.8)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7205

Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 might allow remote attackers to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a crafted WebRTC RTP packet.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7207

Mozilla Firefox before 43.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls, a related issue to CVE-2015-1300.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7208

Mozilla Firefox before 43.0 stores cookies containing vertical tab characters, which allows remote attackers to obtain sensitive information by reading HTTP Cookie headers.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7210

Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function.

Severity: HIGH (7.5)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7211

Mozilla Firefox before 43.0 mishandles the # (number sign) character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7212

Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation.

Severity: HIGH (7.5)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7213

Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.

Severity: MEDIUM (6.8)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7214

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7215

The importScripts function in the Web Workers API implementation in Mozilla Firefox before 43.0 allows remote attackers to bypass the Same Origin Policy by triggering use of the no-cors mode in the fetch API to attempt resource access that throws an exception, leading to information disclosure after a rethrow.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7218

The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote attackers to cause a denial of service (integer underflow, assertion failure, and application exit) via a single-byte header frame that triggers incorrect memory allocation.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7219

The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote attackers to cause a denial of service (integer underflow, assertion failure, and application exit) via a malformed PushPromise frame that triggers decompressed-buffer length miscalculation and incorrect memory allocation.

Severity: MEDIUM (5.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7220

Buffer overflow in the XDRBuffer::grow function in js/src/vm/Xdr.cpp in Mozilla Firefox before 43.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7221

Buffer overflow in the nsDeque::GrowCapacity function in xpcom/glue/nsDeque.cpp in Mozilla Firefox before 43.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a deque size change.

Severity: CRITICAL (10.0)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7222

Integer underflow in the Metadata::setData function in MetaData.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code or cause a denial of service (incorrect memory allocation and application crash) via an MP4 video file with crafted covr metadata that triggers a buffer overflow.

Severity: MEDIUM (6.8)

References:

Published: 2015-12-16
Modified: 2024-11-21

CVE-2015-7223

The WebExtension APIs in Mozilla Firefox before 43.0 allow remote attackers to gain privileges, and possibly obtain sensitive information or conduct cross-site scripting (XSS) attacks, via a crafted web site.

Severity: MEDIUM (4.0)

References:

Published: 2015-09-24
Modified: 2024-11-21

CVE-2015-7327

Mozilla Firefox before 41.0 does not properly restrict the availability of High Resolution Time API times, which allows remote attackers to track last-level cache access, and consequently obtain sensitive information, via crafted JavaScript code that makes performance.now calls.

Severity: MEDIUM (4.3)

References:

Published: 2016-01-09
Modified: 2024-11-21

CVE-2015-7575

Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision.

Severity: MEDIUM (5.9) Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

References:

Published: 2016-02-13
Modified: 2024-11-21

CVE-2016-1521

The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1930

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1931

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to uninitialized memory encountered during brotli data compression, and other vectors.

Severity: CRITICAL (10.0) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1933

Integer overflow in the image-deinterlacing functionality in Mozilla Firefox before 44.0 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted GIF image.

Severity: MEDIUM (6.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1935

Buffer overflow in the BufferSubData function in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allows remote attackers to execute arbitrary code via crafted WebGL content.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1937

The protocol-handler dialog in Mozilla Firefox before 44.0 allows remote attackers to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended.

Severity: MEDIUM (6.1) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1939

Mozilla Firefox before 44.0 stores cookies with names containing vertical tab characters, which allows remote attackers to obtain sensitive information by reading HTTP Cookie headers. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-7208.

Severity: MEDIUM (5.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1942

Mozilla Firefox before 44.0 allows user-assisted remote attackers to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.

Severity: HIGH (7.4) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

References:

Published: 2016-01-31
Modified: 2024-11-21

CVE-2016-1946

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2016-02-13
Modified: 2024-11-21

CVE-2016-1949

Mozilla Firefox before 44.0.2 does not properly restrict the interaction between Service Workers and plugins, which allows remote attackers to bypass the Same Origin Policy via a crafted web site that triggers spoofed responses to requests that use NPAPI, as demonstrated by a request for a crossdomain.xml file.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1952

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1953

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 45.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to js/src/jit/arm/Assembler-arm.cpp, and unknown other vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1954

The nsCSPContext::SendReports function in dom/security/nsCSPContext.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 does not prevent use of a non-HTTP report-uri for a Content Security Policy (CSP) violation report, which allows remote attackers to cause a denial of service (data overwrite) or possibly gain privileges by specifying a URL of a local file.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1955

Mozilla Firefox before 45.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by reading a Content Security Policy (CSP) violation report that contains path information associated with an IFRAME element.

Severity: MEDIUM (4.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1957

Memory leak in libstagefright in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to cause a denial of service (memory consumption) via an MPEG-4 file that triggers a delete operation on an array.

Severity: MEDIUM (4.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1958

browser/base/content/browser.js in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to spoof the address bar via a javascript: URL.

Severity: MEDIUM (4.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1959

The ServiceWorkerManager class in Mozilla Firefox before 45.0 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via unspecified use of the Clients API.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1960

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1961

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1962

Use-after-free vulnerability in the mozilla::DataChannelConnection::Close function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of WebRTC data-channel connections.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1963

The FileReader class in Mozilla Firefox before 45.0 allows local users to gain privileges or cause a denial of service (memory corruption) by changing a file during a FileReader API read operation.

Severity: HIGH (7.4) Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1964

Use-after-free vulnerability in the AtomicBaseIncDec function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by leveraging mishandling of XML transformations.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1965

Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle a navigation sequence that returns to the original page, which allows remote attackers to spoof the address bar via vectors involving the history.back method and the location.protocol property.

Severity: MEDIUM (4.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1966

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference and memory corruption) via a crafted NPAPI plugin.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1967

Mozilla Firefox before 45.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls after restoring a browser session. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-7207.

Severity: MEDIUM (6.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1968

Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted data with brotli compression.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1969

The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.6.1, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1973

Race condition in the GetStaticInstance function in the WebRTC implementation in Mozilla Firefox before 45.0 might allow remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via unspecified vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1974

The nsScannerString::AppendUnicodeTo function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 does not verify that memory allocation succeeds, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via crafted Unicode data in an HTML, XML, or SVG document.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1975

Multiple race conditions in dom/media/systemservices/CamerasChild.cpp in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Severity: MEDIUM (6.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-1977

The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2790

The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2791

The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2792

The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font, a different vulnerability than CVE-2016-2800.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2793

CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2794

The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2795

The graphite2::FileFace::get_table_fn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data structure, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2796

Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2797

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font, a different vulnerability than CVE-2016-2801.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2798

The graphite2::GlyphCache::Loader::Loader function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2799

Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2800

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2801

The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font, a different vulnerability than CVE-2016-2797.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-03-13
Modified: 2024-11-21

CVE-2016-2802

The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted Graphite smart font.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2804

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2805

Unspecified vulnerability in the browser engine in Mozilla Firefox ESR 38.x before 38.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2806

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0 and Firefox ESR 45.x before 45.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2807

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2808

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2811

Use-after-free vulnerability in the ServiceWorkerInfo class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code via vectors related to the BeginReading method.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2812

Race condition in the get implementation in the ServiceWorkerManager class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted web site.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2814

Heap-based buffer overflow in the stagefright::SampleTable::parseSampleCencInfo function in libstagefright in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code via crafted CENC offsets that lead to mismanagement of the sizes table.

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2816

Mozilla Firefox before 46.0 allows remote attackers to bypass the Content Security Policy (CSP) protection mechanism via the multipart/x-mixed-replace content type.

Severity: MEDIUM (6.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2817

The WebExtension sandbox feature in browser/components/extensions/ext-tabs.js in Mozilla Firefox before 46.0 does not properly restrict principal inheritance during chrome.tabs.create and chrome.tabs.update API calls, which allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted extension that accesses a (1) javascript: or (2) data: URL.

Severity: MEDIUM (5.4) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

References:

Published: 2016-04-30
Modified: 2024-11-21

CVE-2016-2820

The Firefox Health Reports (aka FHR or about:healthreport) feature in Mozilla Firefox before 46.0 does not properly restrict the origin of events, which makes it easier for remote attackers to modify sharing preferences by leveraging access to the remote-report IFRAME element.

Severity: MEDIUM (4.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References:

No data currently available.

Version: 2.1.0

ALT-BU-2016-2833-1

Closed vulnerabilities