Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 28.0 vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2
CVE-2014-1528
The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo in Mozilla Firefox 28.0 and SeaMonkey 2.25 on Windows, allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by painting on a CANVAS el...
Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.04Opensuse Opensuse 13.1Opensuse Project Opensuse 12.3Oracle Solaris 11.3Mozilla Firefox 28.0Mozilla Seamonkey 2.25Fedoraproject Fedora 19
10
CVSSv2
CVE-2014-1493
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 allow remote malicious users to cause a denial of service (memory corruption and application crash) ...
Mozilla FirefoxMozilla Firefox EsrMozilla SeamonkeyMozilla ThunderbirdCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.10Debian Debian Linux 7.0Debian Debian Linux 8.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Eus 6.5Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Aus 6.5Redhat Enterprise Linux Server Eus 6.5Redhat Enterprise Linux Server Tus 6.5Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Workstation 6.0Suse Suse Linux Enterprise Software Development Kit 11.0Opensuse Opensuse 11.4Opensuse Opensuse 12.3
10
CVSSv2
CVE-2014-1512
Use-after-free vulnerability in the TypeObject class in the JavaScript engine in Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 allows remote malicious users to execute arbitrary code by triggering extensive m...
Mozilla FirefoxMozilla Firefox EsrMozilla SeamonkeyMozilla ThunderbirdDebian Debian Linux 7.0Debian Debian Linux 8.0Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.10Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Eus 6.5Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Aus 6.5Redhat Enterprise Linux Server Eus 6.5Redhat Enterprise Linux Server Tus 6.5Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Workstation 6.0Suse Suse Linux Enterprise Software Development Kit 11.0Opensuse Opensuse 11.4Opensuse Opensuse 12.3
9.3
CVSSv2
CVE-2014-1494
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla SeamonkeySuse Linux Enterprise Server 11Suse Linux Enterprise Desktop 11Suse Linux Enterprise Software Development Kit 11Oracle Solaris 11.3Opensuse Opensuse 13.1Opensuse Project Opensuse 12.3Opensuse Project Opensuse 11.4Mozilla Firefox
9.3
CVSSv2
CVE-2014-1513
TypedArrayObject.cpp in Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 does not prevent a zero-length transition during use of an ArrayBuffer object, which allows remote malicious users to execute arbitrary co...
Mozilla FirefoxMozilla Firefox EsrMozilla SeamonkeyMozilla ThunderbirdDebian Debian Linux 7.0Debian Debian Linux 8.0Suse Suse Linux Enterprise Software Development Kit 11.0Opensuse Opensuse 11.4Opensuse Opensuse 12.3Opensuse Opensuse 13.1Suse Suse Linux Enterprise Desktop 11Suse Suse Linux Enterprise Server 11Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Eus 6.5Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Aus 6.5Redhat Enterprise Linux Server Eus 6.5Redhat Enterprise Linux Server Tus 6.5Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Workstation 6.0
7.5
CVSSv2
CVE-2015-0835
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 36.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 33.0Mozilla Firefox 32.0Mozilla Firefox 3.6.6Mozilla Firefox 3.6.4Mozilla Firefox 3.6.23Mozilla Firefox 3.6.22Mozilla Firefox 3.6.15Mozilla Firefox 3.6.14Mozilla Firefox 3.5.8Mozilla Firefox 3.5.7Mozilla Firefox 3.5.18Mozilla Firefox 3.5.17Mozilla Firefox 3.5.16Mozilla Firefox 3.5.1Mozilla Firefox 3.5Mozilla Firefox 3.0.3Mozilla Firefox 3.0.2Mozilla Firefox 3.0.13Mozilla Firefox 3.0.12Mozilla Firefox 3.0.11Mozilla Firefox 27.0.1Mozilla Firefox 27.0
7.5
CVSSv2
CVE-2015-0836
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 36.0, Firefox ESR 31.x prior to 31.5, and Thunderbird prior to 31.5 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbit...
Mozilla Firefox Esr 31.1.1Mozilla Firefox Esr 31.2Mozilla Firefox Esr 31.5Mozilla Firefox Esr 31.0Mozilla Firefox Esr 31.1Mozilla Firefox Esr 31.3Mozilla Firefox Esr 31.4Mozilla Thunderbird 31.2Mozilla Thunderbird 31.1.2Mozilla Thunderbird 31.0Mozilla ThunderbirdMozilla Thunderbird 31.3Mozilla Firefox 31.0Mozilla Firefox 30.0Mozilla Firefox 3.6.28Mozilla Firefox 3.6.27Mozilla Firefox 3.6.2Mozilla Firefox 3.6.19Mozilla Firefox 3.6.12Mozilla Firefox 3.6.11Mozilla Firefox 3.5.5Mozilla Firefox 3.5.4
7.5
CVSSv2
CVE-2015-0823
Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox prior to 36.0, might allow remote malicious users to trigger problematic Developer Console information or possibly have unspecified other impact by leveraging incorrect macro expansion, rela...
Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 14.10Opentype Sanitiser Project Opentype SanitiserMozilla FirefoxMozilla Firefox 3.6.9Mozilla Firefox 3.6.8Mozilla Firefox 3.6.7Mozilla Firefox 3.6.25Mozilla Firefox 3.6.24Mozilla Firefox 3.6.18Mozilla Firefox 3.6.17Mozilla Firefox 3.6Mozilla Firefox 3.5.9Mozilla Firefox 3.5.2Mozilla Firefox 3.5.19Mozilla Firefox 3.5.12Mozilla Firefox 3.5.11Mozilla Firefox 3.0.5Mozilla Firefox 3.0.4Mozilla Firefox 3.0.15Mozilla Firefox 3.0.14
7.5
CVSSv2
CVE-2014-1511
Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 allow remote malicious users to bypass the popup blocker via unspecified vectors.
Mozilla FirefoxMozilla Firefox EsrMozilla SeamonkeyMozilla ThunderbirdCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.10Debian Debian Linux 7.0Debian Debian Linux 8.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Eus 6.5Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Aus 6.5Redhat Enterprise Linux Server Eus 6.5Redhat Enterprise Linux Server Tus 6.5Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Workstation 6.0Suse Suse Linux Enterprise Software Development Kit 11.0Opensuse Opensuse 11.4Opensuse Opensuse 12.3
7.5
CVSSv2
CVE-2014-1510
The Web IDL implementation in Mozilla Firefox prior to 28.0, Firefox ESR 24.x prior to 24.4, Thunderbird prior to 24.4, and SeaMonkey prior to 2.25 allows remote malicious users to execute arbitrary JavaScript code with chrome privileges by using an IDL fragment to trigger a wind...
Mozilla FirefoxMozilla Firefox EsrMozilla SeamonkeyMozilla ThunderbirdCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.10Debian Debian Linux 7.0Debian Debian Linux 8.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Eus 6.5Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Aus 6.5Redhat Enterprise Linux Server Eus 6.5Redhat Enterprise Linux Server Tus 6.5Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Workstation 6.0Suse Suse Linux Enterprise Software Development Kit 11.0Opensuse Opensuse 11.4Opensuse Opensuse 12.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook