vulnerability

FreeBSD: VID-7C3A02B9-3273-4426-A0BA-F90FAD2FF72E (CVE-2018-12401): mozilla -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Oct 23, 2018	Oct 24, 2018	May 7, 2019

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Oct 23, 2018

Added

Oct 24, 2018

Modified

May 7, 2019

Description

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnerability affects Firefox < 63.

Solutions

freebsd-upgrade-package-firefoxfreebsd-upgrade-package-firefox-esrfreebsd-upgrade-package-libxulfreebsd-upgrade-package-linux-firefoxfreebsd-upgrade-package-linux-seamonkeyfreebsd-upgrade-package-linux-thunderbirdfreebsd-upgrade-package-seamonkeyfreebsd-upgrade-package-thunderbirdfreebsd-upgrade-package-waterfox

References

UBUNTU-USN-3801-1
UBUNTU-USN-3801-2
NVD-CVE-2018-12401

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today