VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Mozilla
>
Firefox ESR
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2014-02-06
CVE-2014-1481
Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to bypass intended restrictions on window objects by leveraging inconsistency in native getter methods across different JavaScript engines.
network
low complexity
mozilla
fedoraproject
opensuse
suse
redhat
debian
canonical
7.5
7.5
2014-02-06
CVE-2014-1479
The System Only Wrapper (SOW) implementation in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent certain cloning operations, which allows remote attackers to bypass intended restrictions on XUL content via vectors involving XBL content scopes.
network
low complexity
mozilla
canonical
debian
redhat
fedoraproject
opensuse
suse
7.5
7.5
«
Previous
1
2
...
24
25
26
27
28
(current)
»