News aggregator

CVE-2018-5175

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A mechanism to bypass Content Security Policy (CSP) protections on sites that have a "script-src" policy of "'strict-dynamic'". If a target website contains an HTML injection flaw an attacker could inject a reference to a copy of the "require.js" library that is part of Firefox's Developer Tools, and then use a known technique using that library to bypass the CSP restrictions on executing injected scripts. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5176

National Vulnerability Database - Mon, 06/11/2018 - 17:29
The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5177

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A vulnerability exists in XSLT during number formatting where a negative buffer size may be allocated in some instances, leading to a buffer overflow and crash if it occurs. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5178

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.
Categories: Security News

CVE-2018-5180

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A use-after-free vulnerability can occur during WebGL operations. While this results in a potentially exploitable crash, the vulnerability is limited because the memory is freed and reused in a brief window of time during the freeing of the same callstack. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5181

National Vulnerability Database - Mon, 06/11/2018 - 17:29
If a URL using the "file:" protocol is dragged and dropped onto an open tab that is running in a different child process the tab will open a local file corresponding to the dropped URL, contrary to policy. One way to make the target tab open more reliably in a separate process is to open it with the "noopener" keyword. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5182

National Vulnerability Database - Mon, 06/11/2018 - 17:29
If a text string that happens to be a filename in the operating system's native format is dragged and dropped onto the addressbar the specified local file will be opened. This is contrary to policy and is what would happen if the string were the equivalent "file:" URL. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5183

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR < 52.8, Thunderbird < 52.8, and Firefox ESR < 52.8.
Categories: Security News

CVE-2018-5184

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.
Categories: Security News

CVE-2018-5185

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.
Categories: Security News

CVE-2018-5152

National Vulnerability Database - Mon, 06/11/2018 - 17:29
WebExtensions with the appropriate permissions can attach content scripts to Mozilla sites such as accounts.firefox.com and listen to network traffic to the site through the "webRequest" API. For example, this allows for the interception of username and an encrypted password during login to Firefox Accounts. This issue does not expose synchronization traffic directly and is limited to the process of user login to the website and the data displayed to the user once logged in. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5153

National Vulnerability Database - Mon, 06/11/2018 - 17:29
If websocket data is sent with mixed text and binary in a single message, the binary data can be corrupted. This can result in an out-of-bounds read with the read memory sent to the originating server in response. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5154

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8.
Categories: Security News

CVE-2018-5155

National Vulnerability Database - Mon, 06/11/2018 - 17:29
A use-after-free vulnerability can occur while adjusting layout during SVG animations with text paths. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8.
Categories: Security News

CVE-2018-5157

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to intercept messages meant for the viewer. This could allow the site to retrieve PDF files restricted to viewing by an authenticated user on a third-party website. This vulnerability affects Firefox ESR < 52.8 and Firefox < 60.
Categories: Security News

CVE-2018-5158

National Vulnerability Database - Mon, 06/11/2018 - 17:29
The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected through a crafted PDF file. This JavaScript can then be run with the permissions of the PDF viewer by its worker. This vulnerability affects Firefox ESR < 52.8 and Firefox < 60.
Categories: Security News

CVE-2018-5159

National Vulnerability Database - Mon, 06/11/2018 - 17:29
An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. This vulnerability affects Thunderbird < 52.8, Thunderbird ESR < 52.8, Firefox < 60, and Firefox ESR < 52.8.
Categories: Security News

CVE-2018-5160

National Vulnerability Database - Mon, 06/11/2018 - 17:29
WebRTC can use a "WrappedI420Buffer" pixel buffer but the owning image object can be freed while it is still in use. This can result in the WebRTC encoder using uninitialized memory, leading to a potentially exploitable crash. This vulnerability affects Firefox < 60.
Categories: Security News

CVE-2018-5161

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.
Categories: Security News

CVE-2018-5162

National Vulnerability Database - Mon, 06/11/2018 - 17:29
Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.
Categories: Security News

Pages