Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 43.0 vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2016-1947
Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote malicious users to trigger an unintended download by leveraging the absence of reputation data.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox 43.0.2
Mozilla Firefox 43.0.1
Mozilla Firefox 43.0.4
Mozilla Firefox 43.0
Mozilla Firefox 43.0.3
NA
CVE-2015-7203
Buffer overflow in the DirectWriteFontInfo::LoadFontFamilyData function in gfx/thebes/gfxDWriteFontList.cpp in Mozilla Firefox prior to 43.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact via a crafted font-family name.
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2015-7204
Mozilla Firefox prior to 43.0 does not properly store the properties of unboxed objects, which allows remote malicious users to execute arbitrary code via crafted JavaScript variable assignments.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Mozilla Firefox 41.0.1
Mozilla Firefox
Mozilla Firefox 41.0.2
Mozilla Firefox 41.0
NA
CVE-2015-7217
The gdk-pixbuf configuration in Mozilla Firefox prior to 43.0 on Linux GNOME platforms incorrectly enables the TGA decoder, which allows remote malicious users to cause a denial of service (heap-based buffer overflow) via a crafted Truevision TGA image.
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 23
NA
CVE-2015-7218
The HTTP/2 implementation in Mozilla Firefox prior to 43.0 allows remote malicious users to cause a denial of service (integer underflow, assertion failure, and application exit) via a single-byte header frame that triggers incorrect memory allocation.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Mozilla Firefox
NA
CVE-2015-7220
Buffer overflow in the XDRBuffer::grow function in js/src/vm/Xdr.cpp in Mozilla Firefox prior to 43.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
NA
CVE-2015-7211
Mozilla Firefox prior to 43.0 mishandles the # (number sign) character in a data: URI, which allows remote malicious users to spoof web sites via unspecified vectors.
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2015-7219
The HTTP/2 implementation in Mozilla Firefox prior to 43.0 allows remote malicious users to cause a denial of service (integer underflow, assertion failure, and application exit) via a malformed PushPromise frame that triggers decompressed-buffer length miscalculation and incorre...
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
NA
CVE-2015-7223
The WebExtension APIs in Mozilla Firefox prior to 43.0 allow remote malicious users to gain privileges, and possibly obtain sensitive information or conduct cross-site scripting (XSS) attacks, via a crafted web site.
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2015-7202
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 43.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 23
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »