Vulnerability & Exploit Database

Displaying entries 1 - 10 of 20 in total

Results for: CVE-2010-3180 Back to search

SUSE Linux Security Advisory: SUSE-SU-2014:1100-1 Vulnerability

  • Severity: 10
  • Published: September 03, 2014

Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG animation with DOM interaction that triggers incor...

Sun Patch: SunOS 5.10_x86: Thunderbird patch Vulnerability

  • Severity: 10
  • Published: November 18, 2010

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a negative height value in a BMP image within a .ICO file, related to (1) improper handli...

Sun Patch: SunOS 5.10: Thunderbird patch Vulnerability

  • Severity: 10
  • Published: November 18, 2010

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a negative height value in a BMP image within a .ICO file, related to (1) improper handli...

Sun Patch: SunOS 5.10_x86: Firefox patch Vulnerability

  • Severity: 10
  • Published: November 18, 2010

Heap-based buffer overflow in the Convolve3x3 function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote attackers to execute arbitrary code via unspecified vectors.

Sun Patch: SunOS 5.10: Firefox patch Vulnerability

  • Severity: 10
  • Published: November 18, 2010

Heap-based buffer overflow in the Convolve3x3 function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote attackers to execute arbitrary code via unspecified vectors.

SUSE Linux Security Advisory: SUSE-SA:2010:056 Vulnerability

  • Severity: 9
  • Published: October 27, 2010

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the appendChild method, incorrect index tracki...

RHSA-2010:0896: thunderbird security update Vulnerability

  • Severity: 9
  • Published: October 27, 2010

Mozilla Thunderbird is a standalone mail and newsgroup client.A race condition flaw was found in the way Thunderbird handled DocumentObject Model (DOM) element properties. An HTML mail message containingmalicious content could cause Thunderbird to crash or, potentially, executearbitrary code with the privileges of the user running Thunde...

RHSA-2010:0861: firefox security update Vulnerability

  • Severity: 9
  • Published: October 27, 2010

Mozilla Firefox is an open source web browser. XULRunner provides the XULRuntime environment for Mozilla Firefox.A race condition flaw was found in the way Firefox handled Document ObjectModel (DOM) element properties. Malicious HTML content could cause Firefoxto crash or, potentially, execute arbitrary code with the privileges of theuse...

USN-998-1: Thunderbird vulnerabilities Vulnerability

  • Severity: 9
  • Published: October 21, 2010

The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly support window.__lookupGetter__ function calls that lack arguments, which allows remote attackers to execute arbitrary code or cause a deni...

USN-997-1: Firefox and Xulrunner vulnerabilities Vulnerability

  • Severity: 9
  • Published: October 21, 2010

The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly support window.__lookupGetter__ function calls that lack arguments, which allows remote attackers to execute arbitrary code or cause a deni...