Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
carsten book vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1519
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Fedoraproject Fedora 19
Fedoraproject Fedora 20
7.4
CVSSv3
CVE-2016-1942
Mozilla Firefox prior to 44.0 allows user-assisted remote malicious users to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
NA
CVE-2015-7195
The URL parsing implementation in Mozilla Firefox prior to 42.0 improperly recognizes escaped characters in hostnames within Location headers, which allows remote malicious users to obtain sensitive information via vectors involving a redirect.
Mozilla Firefox
NA
CVE-2015-4514
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 42.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.1.1
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.0.1
1 Article
NA
CVE-2014-1528
The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo in Mozilla Firefox 28.0 and SeaMonkey 2.25 on Windows, allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by painting on a CANVAS el...
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Oracle Solaris 11.3
Mozilla Firefox 28.0
Mozilla Seamonkey 2.25
Fedoraproject Fedora 19
NA
CVE-2014-1580
Mozilla Firefox prior to 33.0 does not properly initialize memory for GIF images, which allows remote malicious users to obtain sensitive information from process memory via a crafted web page that triggers a sequence of rendering operations for truncated GIF data within a CANVAS...
Mozilla Firefox 31.0
Mozilla Firefox 30.0
Mozilla Firefox
Mozilla Firefox 31.1.0
NA
CVE-2014-1522
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read, memory corruption, and ...
Fedoraproject Fedora 19
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Mozilla Firefox
Mozilla Seamonkey
6.5
CVSSv3
CVE-2016-1933
Integer overflow in the image-deinterlacing functionality in Mozilla Firefox prior to 44.0 allows remote malicious users to cause a denial of service (memory consumption or application crash) via a crafted GIF image.
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Mozilla Firefox
4.7
CVSSv3
CVE-2016-1947
Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote malicious users to trigger an unintended download by leveraging the absence of reputation data.
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox 43.0
Mozilla Firefox 43.0.4
Mozilla Firefox 43.0.3
Mozilla Firefox 43.0.2
Mozilla Firefox 43.0.1
NA
CVE-2015-4515
Mozilla Firefox prior to 42.0, when NTLM v1 is enabled for HTTP authentication, allows remote malicious users to obtain sensitive hostname information by constructing a crafted web site that sends an NTLM request and reads the Workstation field of an NTLM type 3 message.
Mozilla Firefox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »