Vulnerabilities > Redhat > Enterprise Linux Server AUS > 6.5

DATE	CVE	VULNERABILITY TITLE	RISK
2014-02-06	CVE-2014-1486	Use After Free vulnerability in multiple products Use-after-free vulnerability in the imgRequestProxy function in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving unspecified Content-Type values for image data. network low complexity mozilla fedoraproject opensuse suse debian canonical redhat CWE-416 critical	9.8
2014-02-06	CVE-2014-1482	Out-of-bounds Write vulnerability in multiple products RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent access to discarded data, which allows remote attackers to execute arbitrary code or cause a denial of service (incorrect write operations) via crafted image data, as demonstrated by Goo Create. network low complexity mozilla canonical debian redhat fedoraproject opensuse suse CWE-787	8.8
2014-02-06	CVE-2014-1481	Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to bypass intended restrictions on window objects by leveraging inconsistency in native getter methods across different JavaScript engines. network low complexity mozilla fedoraproject opensuse suse redhat debian canonical	7.5
2014-02-06	CVE-2014-1479	The System Only Wrapper (SOW) implementation in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent certain cloning operations, which allows remote attackers to bypass intended restrictions on XUL content via vectors involving XBL content scopes. network low complexity mozilla canonical debian redhat fedoraproject opensuse suse	7.5
2014-02-06	CVE-2014-1477	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. network low complexity mozilla canonical debian redhat fedoraproject opensuse suse critical	9.8
2014-01-15	CVE-2014-0437	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. network oracle debian canonical mariadb redhat	3.5
2014-01-15	CVE-2014-0412	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. network low complexity oracle mariadb canonical debian redhat	4.0
2014-01-15	CVE-2014-0402	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Locking. network low complexity oracle mariadb canonical debian redhat	4.0
2014-01-15	CVE-2014-0401	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors. network low complexity oracle mariadb canonical debian redhat	4.0
2014-01-15	CVE-2014-0386	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. network low complexity oracle mariadb canonical debian redhat	4.0