Vulnerability & Exploit Database

Displaying entries 1 - 10 of 12 in total

Results for: CVE-2015-4474 Back to search

SUSE: CVE-2015-4474: SUSE Linux Security Advisory Vulnerability

  • Severity: 10
  • Published: August 15, 2015

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 40.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Oracle Solaris 11: CVE-2015-4474: Vulnerability in Firefox, Thunderbird Vulnerability

  • Severity: 10
  • Published: August 15, 2015

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 40.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Gentoo Linux: CVE-2015-4474: Mozilla Products: Multiple vulnerabilities Vulnerability

  • Severity: 10
  • Published: August 15, 2015

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 40.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

USN-2702-1: Firefox vulnerabilities Vulnerability

  • Severity: 10
  • Published: August 11, 2015

The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via malformed WebM video data.

FreeBSD: mozilla -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 10
  • Published: August 11, 2015

Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data.

Alpine Linux: CVE-2015-5600: OpenSSH keyboard-interactive authentication brute force vulnerability Vulnerability

  • Severity: 9
  • Published: August 02, 2015

The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in t...

Apple Safari security update for CVE-2014-4474 Vulnerability

  • Severity: 7
  • Published: December 10, 2014

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.