Vulnerability & Exploit Database

Displaying entries 1 - 10 of 13 in total

Results for: CVE-2016-1960 Back to search

Ubuntu: (Multiple Advisories) (CVE-2016-1960): Thunderbird vulnerabilities Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

Oracle Solaris 11: CVE-2016-1960: Vulnerability in Firefox, Thunderbird Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

Oracle Linux: CVE-2016-1960: ELSA-2016-0460 - thunderbird security update Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

MFSA2016-23 Thunderbird: Use-after-free in HTML5 string parser (CVE-2016-1960) Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

RHSA-2016:0460: thunderbird security update Vulnerability

  • Severity: 9
  • Published: March 13, 2016

Mozilla Thunderbird is a standalone mail and newsgroup client.Several flaws were found in the processing of malformed web content. A webpage containing malicious content could cause Thunderbird to crash or,potentially, execute arbitrary code with the privileges of the user runningThunderbird. (CVE-2016-1952, CVE-2016-1954, CVE-2016-1957,...

Huawei EulerOS: CVE-2016-1960: firefox security update Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

Gentoo Linux: CVE-2016-1960: Mozilla Products: Multiple vulnerabilities Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

Debian: CVE-2016-1960: firefox-esr, icedove, iceweasel -- security update Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

CentOS: (CVE-2016-1960) (Multiple Advisories): thunderbird Vulnerability

  • Severity: 7
  • Published: March 13, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...

SUSE: CVE-2016-1960: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: March 11, 2016

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.<...