VIR Vulnerability Intelligence Relay

Search

Found 363 results in 298ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2013-0758 critical 10.0 EXP ubuntu ubuntususe suse rhel mozilla 14y ago Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 a…
CVE-2013-0754 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the ListenerManager implementation in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 1…
CVE-2013-0753 critical 10.0 EXP ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the serializeToStream implementation in the XMLSerializer component in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird…
CVE-2013-0750 critical 9.3 suse suseubuntu ubuntu rhel mozilla 14y ago Integer overflow in the JavaScript implementation in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.1…
CVE-2013-0746 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 d…
CVE-2013-0744 critical 9.3 suse suseubuntu ubuntu rhel mozilla 14y ago Use-after-free vulnerability in the TableBackgroundPainter::TableBackgroundData::Destroy function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird b…
CVE-2012-5842 critical 9.3 ubuntu ubuntususe susedebian debian mozilla 14y ago Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey…
CVE-2012-5840 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…
CVE-2012-5839 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.…
CVE-2012-5835 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows…
CVE-2012-5833 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey befor…
CVE-2012-5829 critical 9.3 ubuntu ubuntususe susedebian debian mozilla 14y ago Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…
CVE-2012-4216 critical 9.3 ubuntu ubuntususe susedebian debian mozilla 14y ago Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…
CVE-2012-4215 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x befor…
CVE-2012-4214 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…
CVE-2012-4202 critical 9.3 ubuntu ubuntususe suse rhel mozilla 14y ago Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.1…
CVE-2012-4406 critical 9.8 9.8 FIX fedora fedora rheldebian debian openstackredhat 14y ago OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arb…
CVE-2012-3163 critical 9.0 rhelubuntu ubuntudebian debian oraclemariadbf5 14y ago Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availab…
CVE-2012-4188 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Heap-based buffer overflow in the Convolve3x3 function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey befor…
CVE-2012-4187 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage a certain insPos variable, w…
CVE-2012-4186 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, a…
CVE-2012-4185 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago Buffer overflow in the nsCharTraits::length function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before …
CVE-2012-4183 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago Use-after-free vulnerability in the DOMSVGTests::GetRequiredFeatures function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0…
CVE-2012-4182 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Use-after-free vulnerability in the nsTextEditRules::WillInsert function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, a…
CVE-2012-4181 critical 9.3 rhelubuntu ubuntu mozilla 14y ago Use-after-free vulnerability in the nsSMILAnimationController::DoSample function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 1…
CVE-2012-4180 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Heap-based buffer overflow in the nsHTMLEditor::IsPrevCharInNodeWhitespace function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x befor…
CVE-2012-4179 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Use-after-free vulnerability in the nsHTMLCSSUtils::CreateCSSPropertyTxn function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before …
CVE-2012-3995 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote…
CVE-2012-3991 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro…
CVE-2012-3990 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…
CVE-2012-3988 critical 9.3 rhelubuntu ubuntususe suse mozilla 14y ago Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 might allow user-as…
CVE-2012-3982 critical 9.3 rhelubuntu ubuntudebian debian mozilla 14y ago Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey b…
CVE-2012-3968 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the WebGL implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey bef…
CVE-2012-3967 critical 9.3 ubuntu ubuntususe suse linux-kernel mozilla 14y ago The WebGL implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 on Linux, when a large …
CVE-2012-3963 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the js::gc::MapAllocToTraceKind function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, a…
CVE-2012-3961 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the RangeData implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey…
CVE-2012-3960 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the mozSpellChecker::SetCurrentDictionary function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before…
CVE-2012-3959 critical 10.0 ubuntu ubuntususe susedebian debian mozilla 14y ago Use-after-free vulnerability in the nsRangeUpdater::SelAdjDeleteNode function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0…
CVE-2012-3957 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and…
CVE-2012-3956 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the MediaStreamGraphThreadRunnable::Run function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 1…
CVE-2012-1976 critical 10.0 ubuntu ubuntususe suse rhel mozilla 14y ago Use-after-free vulnerability in the nsHTMLSelectElement::SubmitNamesValues function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x befor…
CVE-2012-1975 critical 10.0 ubuntu ubuntususe susedebian debian mozilla 14y ago Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and S…
CVE-2012-1974 critical 10.0 ubuntu ubuntususe susedebian debian mozilla 14y ago Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7…
CVE-2012-1973 critical 10.0 ubuntu ubuntususe susedebian debian mozilla 14y ago Use-after-free vulnerability in the nsObjectLoadingContent::LoadObject function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10…
CVE-2012-1972 critical 10.0 suse suseubuntu ubuntudebian debian mozilla 14y ago Use-after-free vulnerability in the nsHTMLEditor::CollapseAdjacentTextNodes function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x befo…
CVE-2012-1970 critical 10.0 ubuntu ubuntususe susedebian debian mozilla 14y ago Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey b…
CVE-2011-3193 critical 9.3 FIX suse suse rhelubuntu ubuntu gnomeqt 14y ago Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (cra…
CVE-2012-2039 critical 9.3 macos macos linux-kernelsuse suse adobe 14y ago Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and be…
CVE-2012-2037 critical 9.3 macos macos linux-kernelsuse suse adobe 14y ago Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and be…
CVE-2012-2036 critical 9.3 macos macos linux-kernelsuse suse adobe 14y ago Integer overflow in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android…
CVE-2012-2035 critical 9.3 macos macos linux-kernelsuse suse adobe 14y ago Stack-based buffer overflow in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10…
CVE-2012-1938 critical 9.3 suse suse rhel mozillaredhat 14y ago Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 13.0, Thunderbird before 13.0, and SeaMonkey before 2.10 allow remote attackers to cause a denial of service (memo…
CVE-2011-3188 critical 9.1 9.1 FIX linux-kernel rhel f5 14y ago The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote…
CVE-2011-4749 critical 10.0 rhel parallels 15y ago The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass…
CVE-2011-4744 critical 10.0 rhel parallels 15y ago The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by lev…
CVE-2011-4743 critical 10.0 rhel parallels 15y ago The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified …
CVE-2011-4739 critical 10.0 rhel parallels 15y ago The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass au…
CVE-2011-4733 critical 10.0 rhel parallels 15y ago The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecifie…
CVE-2011-4732 critical 10.0 rhel parallels 15y ago The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have …
CVE-2011-4730 critical 10.0 rhel parallels 15y ago The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attacke…
CVE-2011-4727 critical 10.0 rhel parallels 15y ago The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 does not properly validate string data that is intended for storage in an XML document, which allows remote attacker…
CVE-2010-4203 critical 9.8 9.8 FIX debian debian rhel googlewebmproject 16y ago WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary co…
CVE-2010-2941 critical 9.8 9.8 FIX debian debiansuse susemacos macos apple 16y ago ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-f…