Show filters
299 Total Results
Displaying 141-150 of 299
Sort by:
Attacker Value
Unknown
CVE-2016-9898
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
Use-after-free resulting in potentially exploitable crash when manipulating DOM subtrees in the Editor. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.
0
Attacker Value
Unknown
CVE-2018-5117
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this text to spoof the displayed URL. This issue could result in the wrong URL being displayed as a location, which can mislead users to believe they are on a different site than the one loaded. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
0
Attacker Value
Unknown
CVE-2017-5444
Disclosure Date: June 11, 2018 (last updated October 22, 2024)
A buffer overflow vulnerability while parsing "application/http-index-format" format content when the header contains improperly formatted data. This allows for an out-of-bounds read of data from memory. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.
0
Attacker Value
Unknown
CVE-2017-7803
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
When a page's content security policy (CSP) header contains a "sandbox" directive, other directives are ignored. This results in the incorrect enforcement of CSP. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.
0
Attacker Value
Unknown
CVE-2017-5404
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
0
Attacker Value
Unknown
CVE-2017-5375
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
0
Attacker Value
Unknown
CVE-2017-5376
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
Use-after-free while manipulating XSL in XSLT documents. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
0
Attacker Value
Unknown
CVE-2017-5445
Disclosure Date: June 11, 2018 (last updated October 22, 2024)
A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.
0
Attacker Value
Unknown
CVE-2017-7801
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.
0
Attacker Value
Unknown
CVE-2017-5449
Disclosure Date: June 11, 2018 (last updated November 26, 2024)
A possibly exploitable crash triggered during layout and manipulation of bidirectional unicode text in concert with CSS animations. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and Firefox < 53.
0