Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mozillaMozilla FoundationMFSA2015-90
HistoryAug 11, 2015 - 12:00 a.m.

Vulnerabilities found through code inspection — Mozilla

2015-08-1100:00:00
Mozilla Foundation
www.mozilla.org
29

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.053

Percentile

93.1%

JSON

Security researcher Ronald Crane reported three vulnerabilities affecting released code that were found through code inspection. These included one use of unowned memory, one use of a deleted object, and one memory safety bug. These do not all have clear mechanisms to be exploited through web content but are vulnerable if a mechanism can be found to trigger them.

Affected configurations

Vulners
Node
mozillafirefoxRange<40
OR
mozillafirefox_esrRange<38.2
OR
mozillafirefox_osRange<2.2
OR
mozillafirefox_osRange<2.5
OR
mozillaseamonkeyRange<2.35
OR
mozillathunderbirdRange<38.2
VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillafirefox_esr*cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
mozillafirefox_os*cpe:2.3:o:mozilla:firefox_os:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
mozillathunderbird*cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

Related

openvas 30
nessus 30
veracode 12
centos 2
redhat 2
oraclelinux 2
mageia 2
ubuntu 4
cve 3
nvd 3
prion 3
cvelist 3
ubuntucve 3
debian 2
suse 6
archlinux 1
freebsd 1
kaspersky 1
ibm 3
securityvulns 1
gentoo 1
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-90) - Linux
2021-11-11 00:00:00
Oracle: Security Advisory (ELSA-2015-1682)
2015-10-06 00:00:00
CentOS Update for thunderbird CESA-2015:1682 centos6
2015-08-28 00:00:00
nessus
nessus
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x, SL7.x i386/x86_64 (20150825)
2015-08-26 00:00:00
CentOS 5 / 6 / 7 : thunderbird (CESA-2015:1682)
2015-10-22 00:00:00
Ubuntu 14.04 LTS : Thunderbird vulnerabilities (USN-2712-1)
2015-08-26 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:18:07
Denial Of Service (DoS)
2019-05-02 05:18:07
Denial Of Service (DoS)
2019-05-02 05:18:06
centos
centos
thunderbird security update
2015-08-25 22:25:27
firefox security update
2015-08-11 20:36:44
redhat
redhat
(RHSA-2015:1682) Important: thunderbird security update
2015-08-25 00:00:00
(RHSA-2015:1586) Critical: firefox security update
2015-08-11 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2015-08-25 00:00:00
firefox security update
2015-08-11 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2015-08-27 23:49:46
Updated firefox packages fixes security vulnerabilities
2015-08-11 23:22:53
ubuntu
ubuntu
Thunderbird vulnerabilities
2015-08-25 00:00:00
Firefox regression
2015-08-20 00:00:00
Firefox vulnerabilities
2015-08-11 00:00:00
cve
cve
CVE-2015-4488
2015-08-16 01:59:16
CVE-2015-4489
2015-08-16 01:59:17
CVE-2015-4487
2015-08-16 01:59:15
nvd
nvd
CVE-2015-4487
2015-08-16 01:59:15
CVE-2015-4488
2015-08-16 01:59:16
CVE-2015-4489
2015-08-16 01:59:17
prion
prion
Buffer overflow
2015-08-16 01:59:00
Memory corruption
2015-08-16 01:59:00
Design/Logic Flaw
2015-08-16 01:59:00
cvelist
cvelist
CVE-2015-4487
2015-08-16 01:00:00
CVE-2015-4488
2015-08-16 01:00:00
CVE-2015-4489
2015-08-16 01:00:00
ubuntucve
ubuntucve
CVE-2015-4487
2015-08-11 00:00:00
CVE-2015-4488
2015-08-11 00:00:00
CVE-2015-4489
2015-08-11 00:00:00
debian
debian
[SECURITY] [DSA 3333-1] iceweasel security update
2015-08-12 10:24:11
[SECURITY] [DSA 3410-1] icedove security update
2015-12-01 22:21:09
suse
suse
Security update for MozillaFirefox, mozilla-nss (important)
2015-09-10 17:10:07
Security update for MozillaFirefox, mozilla-nss (important)
2015-09-02 12:10:07
Security update for MozillaFirefox (important)
2015-08-14 19:10:03
archlinux
archlinux
firefox: multiple issues
2015-08-12 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-08-11 00:00:00
kaspersky
kaspersky
KLA10643 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-08-11 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Firefox affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance
2018-06-17 22:30:13
Security Bulletin: Mozilla Firefox vulnerability issues in IBM SONAS
2018-06-18 00:09:55
Security Bulletin: Multiple vulnerabilities of Mozilla Firefox in IBM Storwize V7000 Unified
2018-06-18 00:09:54
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey / Firefox OS multiple security vulnerabilities
2015-08-31 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.053

Percentile

93.1%

JSON
Related for MFSA2015-90
openvas30nessus30veracode12centos2redhat2oraclelinux2mageia2ubuntu4cve3nvd3prion3cvelist3ubuntucve3debian2suse6archlinux1freebsd1kaspersky1ibm3securityvulns1gentoo1