Lucene search
Veracode Vulnerability DatabaseVERACODE:45997HistoryMar 25, 2024 - 1:33 a.m.
Return-Oriented Programming(ROP)
2024-03-2501:33:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
vulnerability
thunderbird
firefox-esr
return-oriented programming
improper handling
return registers
arbitrary code
controlled values
software
thunderbird:sid, firefox-esr:sid is vulnerable to Return-Oriented Programming(ROP). The vulnerability is due to improper handling of return registers, potentially allowing attackers to execute arbitrary code by overwriting them with controlled values.
References
bugzilla.mozilla.org/show_bug.cgi?id=1879939
lists.debian.org/debian-lts-announce/2024/03/msg00022.html
lists.debian.org/debian-lts-announce/2024/03/msg00028.html
security-tracker.debian.org/tracker/CVE-2024-2607
www.mozilla.org/security/advisories/mfsa2024-12/
www.mozilla.org/security/advisories/mfsa2024-13/
www.mozilla.org/security/advisories/mfsa2024-14/
Related
redhatcve
redhatcve
CVE-2024-2607
2024-03-21 11:39:26
cgr
cgr
CVE-2024-2607 vulnerabilities
2024-05-19 03:07:16
cnvd
cnvd
Code execution vulnerability in multiple Mozilla products (CNVD-2024-14978)
2024-03-21 00:00:00
debiancve
debiancve
CVE-2024-2607
2024-03-19 12:15:08
nvd
nvd
CVE-2024-2607
2024-03-19 12:15:08
cve
cve
CVE-2024-2607
2024-03-19 12:15:08
ubuntucve
ubuntucve
CVE-2024-2607
2024-03-19 00:00:00
alpinelinux
alpinelinux
CVE-2024-2607
2024-03-19 12:15:08
cvelist
cvelist
CVE-2024-2607
2024-03-19 12:02:52
openvas
openvas
Ubuntu: Security Advisory (USN-6717-1)
2024-03-27 00:00:00
Mageia: Security Advisory (MGASA-2024-0094)
2024-04-05 00:00:00
Debian: Security Advisory (DSA-5643-1)
2024-03-22 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2024-03-26 00:00:00
thunderbird security update
2024-03-26 00:00:00
thunderbird security update
2024-03-25 00:00:00
nessus
nessus
CentOS 8 : thunderbird (CESA-2024:1494)
2024-04-08 00:00:00
Oracle Linux 8 : thunderbird (ELSA-2024-1494)
2024-03-27 00:00:00
RHEL 7 : thunderbird (RHSA-2024:1498)
2024-04-23 00:00:00
osv
osv
Moderate: thunderbird security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-27 04:34:32
redhat
redhat
(RHSA-2024:1498) Moderate: thunderbird security update
2024-03-25 18:33:53
(RHSA-2024:1496) Moderate: thunderbird security update
2024-03-25 18:33:37
(RHSA-2024:1500) Moderate: thunderbird security update
2024-03-25 18:46:38
almalinux
almalinux
Moderate: thunderbird security update
2024-03-25 00:00:00
Critical: firefox security update
2024-03-25 00:00:00
Moderate: thunderbird security update
2024-03-25 00:00:00
debian
debian
[SECURITY] [DSA 5643-1] firefox-esr security update
2024-03-21 19:19:35
[SECURITY] [DLA 3769-1] thunderbird security update
2024-03-23 11:22:35
[SECURITY] [DSA 5644-1] thunderbird security update
2024-03-21 19:22:16
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-03-26 00:00:00
Firefox vulnerabilities
2024-03-20 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2024-03-27 22:40:25
Updated nss firefox, nss packages fix security vulnerabilities
2024-03-27 22:24:13
centos
centos
thunderbird security update
2024-04-03 14:01:39
firefox security update
2024-04-03 14:00:43
rocky
rocky
thunderbird security update
2024-03-27 04:34:32
firefox security update
2024-03-27 04:34:32
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.9 — Mozilla
2024-03-19 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.9 — Mozilla
2024-03-19 00:00:00
Security Vulnerabilities fixed in Firefox 124 — Mozilla
2024-03-19 00:00:00
kaspersky
kaspersky
KLA65226 Multiple vulnerabilities in Mozilla Thunderbird
2024-03-19 00:00:00
KLA65225 Multiple vulnerabilities in Mozilla Firefox ESR
2024-03-19 00:00:00
KLA65224 Multiple vulnerabilities in Mozilla Firefox
2024-03-19 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2024-03-20 00:27:50
[slackware-security] mozilla-thunderbird
2024-03-20 00:28:21