Vulnerability & Exploit Database

Back to search

FreeBSD: VID-6A09C80E-6EC7-442A-BC65-D72CE69FD887 (CVE-2017-7846): mozilla -- multiple vulnerabilities

Severity CVSS Published Added Modified
4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) December 21, 2017 December 24, 2017 December 24, 2017


Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-6A09C80E-6EC7-442A-BC65-D72CE69FD887:

Mozilla Foundation reports:

CVE-2017-7845: Buffer overflow when drawing and validating elements with ANGLE library using Direct 3D 9

CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin

CVE-2017-7847: Local path string can be leaked from RSS feed

CVE-2017-7848: RSS Feed vulnerable to new line Injection

CVE-2017-7829: Mailsploit part 1: From address with encoded null character is cut off in message header display

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now