Vulnerability & Exploit Database

Displaying entries 1 - 10 of 17 in total

Results for: CVE-2008-5014 Back to search

SUSE Linux Security Advisory: SUSE-SU-2014:1100-1 Vulnerability

  • Severity: 10
  • Published: September 03, 2014

Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG animation with DOM interaction that triggers incor...

USN-668-1: Thunderbird vulnerabilities Vulnerability

  • Severity: 10
  • Published: November 13, 2008

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class.

USN-667-1: Firefox and xulrunner vulnerabilities Vulnerability

  • Severity: 10
  • Published: November 13, 2008

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class.

SUSE Linux Security Advisory: SUSE-SA:2008:055 Vulnerability

  • Severity: 10
  • Published: November 13, 2008

The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js.

SUSE Linux Security Vulnerability: CVE-2008-5014 Vulnerability

  • Severity: 10
  • Published: November 13, 2008

jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native objec...

MFSA2008-50 Thunderbird: Crash and remote code execution via __proto__ tampering (CVE-2008-5014) Vulnerability

  • Severity: 10
  • Published: November 13, 2008

jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native objec...

MFSA2008-50 SeaMonkey: Crash and remote code execution via __proto__ tampering (CVE-2008-5014) Vulnerability

  • Severity: 10
  • Published: November 13, 2008

jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native objec...

MFSA2008-50 Firefox: Crash and remote code execution via __proto__ tampering (CVE-2008-5014) Vulnerability

  • Severity: 10
  • Published: November 13, 2008

jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native objec...

RHSA-2008:0978: firefox security update Vulnerability

  • Severity: 10
  • Published: November 13, 2008

Mozilla Firefox is an open source Web browser.Several flaws were found in the processing of malformed web content. A webpage containing malicious content could cause Firefox to crash or,potentially, execute arbitrary code as the user running Firefox.(CVE-2008-0017, CVE-2008-5014, CVE-2008-5016, CVE-2008-5017,CVE-2008-5018, CVE-2008-5019,...

RHSA-2008:0977: seamonkey security update Vulnerability

  • Severity: 10
  • Published: November 13, 2008

SeaMonkey is an open source Web browser, email and newsgroup client, IRCchat client, and HTML editor.Several flaws were found in the processing of malformed web content. A webpage containing malicious content could cause SeaMonkey to crash or,potentially, execute arbitrary code as the user running SeaMonkey.(CVE-2008-0017, CVE-2008-5013,...