Page 150 of 881 results (0.057 seconds)

CVSS: 9.3EPSS: 7%CPEs: 52EXPL: 0

CVE-2009-3982

https://notcve.org/view.php?id=CVE-2009-3982

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades no especificadas en el motor JavaScript en Mozilla Firefox v3.5.x antes de v3.5.6, SeaMonkey antes de v2.0.1 y Thunderbird permite a atacantes remotos provocar una denegación de servicio (mediante corrupción de memoria y bloqueo de la aplicación) o posiblemente ejecutar código arbitrario a través de vectores desconocidos. • http://secunia.com/advisories/37699 http://secunia.com/advisories/37783 http://secunia.com/advisories/37785 http://secunia.com/advisories/37856 http://secunia.com/advisories/37881 http://securitytracker.com/id?1023333 http://securitytracker.com/id?1023334 http://www.mozilla.org/security/announce/2009/mfsa2009-65.html http://www.novell.com/linux/security/advisories/2009_63_firefox.html http://www.securityfocus.com/bid/37349 http://www.securityfocus.com/bid/37364 http://www. •

CVSS: 9.3EPSS: 10%CPEs: 156EXPL: 0

CVE-2009-3979 – Mozilla crash with evidence of memory corruption

https://notcve.org/view.php?id=CVE-2009-3979

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades no especificadas en el motor del navegador de Mozilla Firefox antes de v3.0.16 y 3.5.x antes de 3.5.6, SeaMonkey antes de v2.0.1 y Thunderbird permiten a atacantes remotos provocar una denegación de servicio (por corrupción de la memoria y bloqueo de la aplicación) o posiblemente ejecutar código arbitrario a través de vectores desconocidos. • http://secunia.com/advisories/37699 http://secunia.com/advisories/37703 http://secunia.com/advisories/37704 http://secunia.com/advisories/37785 http://secunia.com/advisories/37813 http://secunia.com/advisories/37856 http://secunia.com/advisories/37881 http://securitytracker.com/id?1023333 http://securitytracker.com/id?1023334 http://www.debian.org/security/2009/dsa-1956 http://www.mozilla.org/security/announce/2009/mfsa2009-65.html http://www.novell.com/linux/security/advis •

CVSS: 9.3EPSS: 10%CPEs: 152EXPL: 0

CVE-2009-3981 – Mozilla crashes with evidence of memory corruption

https://notcve.org/view.php?id=CVE-2009-3981

Unspecified vulnerability in the browser engine in Mozilla Firefox before 3.0.16, SeaMonkey before 2.0.1, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Vulnerabilidad no especificada en el motor del navegador de Mozilla Firefox antes de v3.0.16, SeaMonkey antes de v2.0.1 y Thunderbird permite a atacantes remotos provocar una denegación de servicio (mediante corrupción de la memoria y bloqueo de la aplicación) o posiblemente ejecutar código arbitrario a través de vectores desconocidos. • http://secunia.com/advisories/37699 http://secunia.com/advisories/37704 http://secunia.com/advisories/37785 http://secunia.com/advisories/37813 http://secunia.com/advisories/37881 http://securitytracker.com/id?1023333 http://securitytracker.com/id?1023334 http://www.debian.org/security/2009/dsa-1956 http://www.mozilla.org/security/announce/2009/mfsa2009-65.html http://www.novell.com/linux/security/advisories/2009_63_firefox.html http://www.securityfocus.com/bid/37349 http: •

CVSS: 9.3EPSS: 0%CPEs: 27EXPL: 0

CVE-2009-4127

https://notcve.org/view.php?id=CVE-2009-4127

Unspecified vulnerability in Wikipedia Toolbar extension before 0.5.9.2 for Firefox allows user-assisted remote attackers to execute arbitrary JavaScript with Chrome privileges via vectors involving unspecified Toolbar buttons and the eval function. ... Vulnerabilidad inespecífica en la extensión de Firefox Wikipedia Toolbar anteriores a v0.5.9.2 permite a atacantes remotos con ayuda del usuario ejecutar JavaScript arbitrario con privilegios Chrome a través de vectores que incluyen botones inespecíficos de la barra de herramientas y la función eval. • http://secunia.com/advisories/37377 http://www.securityfocus.com/bid/37038 http://www.vupen.com/english/advisories/2009/3268 https://addons.mozilla.org/en-US/firefox/addons/versions/6401#version-0.5.9.2 • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 9.3EPSS: 1%CPEs: 3EXPL: 0

CVE-2009-4102

https://notcve.org/view.php?id=CVE-2009-4102

Sage 1.4.3 and earlier extension for Firefox performs certain operations with chrome privileges, which allows remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via the description tag of an RSS feed. Sage v1.4.3 y anteriores extensiones para Firefox realiza ciertas operaciones con privilegios del chrome, lo que permite a atacantes remotos ejecutar comandos de su elección y realizar ataques ataques de secuencias de comandos a través de la etiqueta descripción de un feed RSS. • http://forums.mozillazine.org/viewtopic.php?f=48&t=1603515&start=0 http://jvn.jp/en/jp/JVN99203127/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2011-000070 http://secunia.com/advisories/37466 http://www.debian.org/security/2009/dsa-1951 http://www.net-security.org/secworld.php?id=8527 http://www.securityfocus.com/bid/37120 http://www.vupen.com/english/advisories/2009/3324 https://exchange.xforce.ibmcloud.com/vulnerabilities/54396 • CWE-20: Improper Input Validation •