firefox esr vulnerabilities and exploits

NA
CVE-2019-9810

Mozilla Firefox is vulnerable to a buffer overflow, caused by incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method. By persuading a victim to visit a specially-crafted Web site, a remote attacker could overflow a buffer and execute arbitrary...

NA
CVE-2019-9813

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion when improperly handling __proto__ mutations. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using...

NA
CVE-2019-9804

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by an error when pasting the result of the 'Copy as cURL' command into a command shell on macOS. By persuading a victim to visit a specially-crafted Web site, a remote...

NA
CVE-2019-9805

Mozilla Firefox could allow a remote attacker to obtain sensitive information, caused by an error in the Prio library. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to read data from uninitialized memory for some...

NA
CVE-2019-9806

Mozilla Firefox is vulnerable to a denial of service, caused by an error during authorization prompting for FTP transaction. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to cause a denial of service....

NA
CVE-2019-9807

Mozilla Firefox could allow a remote attacker to bypass security restrictions, caused by an error when arbitrary text is sent over an FTP connection and a page reload is initiated. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this...

NA
CVE-2019-9809

Mozilla Firefox is vulnerable to a denial of service, caused by an error related to a series of modal alert messages. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to cause a denial of service....

NA
CVE-2019-9808

If WebRTC permission is requested from documents with data: or blob: URLs in Firefox before 66.0, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the requestee, leading to user confusion about...

NA
CVE-2019-9789

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack...

NA
CVE-2019-9802

Mozilla Firefox could allow a remote attacker to obtain sensitive information, caused by a Chrome process information leak. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to bypass sandbox protections and read...