mozilla vulnerabilities and exploits

NA
CVE-2019-9810

Mozilla Firefox is vulnerable to a buffer overflow, caused by incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method. By persuading a victim to visit a specially-crafted Web site, a remote attacker could overflow a buffer and execute arbitrary...

NA
CVE-2019-9813

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion when improperly handling __proto__ mutations. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using...

NA
CVE-2019-6481

2FA & macOS Disk Encryption Bypass in Abine Blur 7.24* [CVE-2019-6481]...

5
MEDIUM
CVE-2018-7213

The Password Manager Extension in Abine Blur 7.8.242* before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured....

NA
CVE-2019-9807

Mozilla Firefox could allow a remote attacker to bypass security restrictions, caused by an error when arbitrary text is sent over an FTP connection and a page reload is initiated. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this...

NA
CVE-2019-9803

Mozilla Firefox for Android is vulnerable to a man-in-the-middle attack, caused by the failure to correctly enforce the Upgrade-Insecure-Requests (UIR) specification. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability...

NA
CVE-2019-9808

If WebRTC permission is requested from documents with data: or blob: URLs in Firefox before 66.0, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the requestee, leading to user confusion about...

NA
CVE-2019-9789

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack...

NA
CVE-2019-9806

Mozilla Firefox is vulnerable to a denial of service, caused by an error during authorization prompting for FTP transaction. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to cause a denial of service....

NA
CVE-2019-9804

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by an error when pasting the result of the 'Copy as cURL' command into a command shell on macOS. By persuading a victim to visit a specially-crafted Web site, a remote...