Vulnerabilities > Mozilla > High

DATE CVE VULNERABILITY TITLE RISK
2016-09-22 CVE-2016-5284 Improper Input Validation vulnerability in Mozilla Firefox
Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 rely on unintended expiration dates for Preloaded Public Key Pinning, which allows man-in-the-middle attackers to spoof add-on updates by leveraging possession of an X.509 server certificate for addons.mozilla.org signed by an arbitrary built-in Certification Authority.
network
low complexity
mozilla CWE-20
7.4
2016-09-22 CVE-2016-5283 Improper Access Control vulnerability in Mozilla Firefox
Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Policy via a crafted fragment identifier in the SRC attribute of an IFRAME element, leading to insufficient restrictions on link-color information after a document is resized.
network
low complexity
mozilla CWE-284
8.8
2016-09-22 CVE-2016-5278 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox
Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute arbitrary code via a crafted image data that is mishandled during the encoding of an image frame to an image.
network
low complexity
mozilla CWE-119
8.8
2016-09-22 CVE-2016-5275 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox
Buffer overflow in the mozilla::gfx::FilterSupport::ComputeSourceNeededRegions function in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code by leveraging improper interaction between empty filters and CANVAS element rendering.
network
low complexity
mozilla CWE-119
8.8
2016-09-22 CVE-2016-5273 Improper Access Control vulnerability in Mozilla Firefox
The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the accessibility implementation in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code via a crafted web site.
network
low complexity
mozilla CWE-284
8.8
2016-09-22 CVE-2016-5272 Improper Input Validation vulnerability in Mozilla Firefox
The nsImageGeometryMixin class in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 does not properly perform a cast of an unspecified variable during handling of INPUT elements, which allows remote attackers to execute arbitrary code via a crafted web site.
network
low complexity
mozilla CWE-20
8.8
2016-08-07 CVE-2016-1951 Integer Overflow or Wraparound vulnerability in Mozilla Netscape Portable Runtime
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
network
low complexity
mozilla CWE-190
8.6
2016-08-05 CVE-2016-5266 Permissions, Privileges, and Access Controls vulnerability in Mozilla Firefox
Mozilla Firefox before 48.0 does not properly restrict drag-and-drop (aka dataTransfer) actions for file: URIs, which allows user-assisted remote attackers to access local files via a crafted web site.
network
low complexity
mozilla CWE-264
8.1
2016-08-05 CVE-2016-5264 Use After Free vulnerability in multiple products
Use-after-free vulnerability in the nsNodeUtils::NativeAnonymousChildListChange function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG element that is mishandled during effect application.
network
low complexity
mozilla oracle CWE-416
8.8
2016-08-05 CVE-2016-5263 Incorrect Type Conversion or Cast vulnerability in multiple products
The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary code via a crafted web site that leverages "type confusion."
network
low complexity
mozilla oracle CWE-704
8.8