Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 23, 2024, 6:02 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 202021 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2506 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202022 | 9 | 危険 | マイクロソフト | - | Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-2509 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202023 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-2508 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202024 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3675 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202025 | 9.3 | 危険 | マイクロソフト | - | Microsoft Project における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0102 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202026 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer におけるメモリ破損の脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3673 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202027 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer におけるメモリ破損の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3671 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202028 | 10 | 危険 | マイクロソフト | - | Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 |
CWE-255 CWE-94 |
CVE-2009-3677 | 2010-01-22 10:24 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202029 | 10 | 危険 | マイクロソフト | - | Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-2505 | 2010-01-22 10:24 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 202030 | 6.9 | 警告 | acpid | - | acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4235 | 2010-01-21 11:44 | 2009-12-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 23, 2024, 8:45 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 301 | 8.8 |
HIGH
Network |
mozilla debian redhat novell opensuse canonical |
firefox debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_server_aus enterprise_linux_for_scientific_computing enterprise_linux_workstation enterpris… |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to cause a denial of service (memory corruption and a… Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2818 | 2024-10-22 22:54 | 2016-06-13 | Show | GitHub Exploit DB Packet Storm |
| 302 | - |
mozilla oracle novell |
firefox_esr firefox solaris suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 enables excessive privileges for internal Workers, which might allow remote attackers to execute arbitrary … Update |
CWE-17
Code |
CVE-2015-2743 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 303 | - |
mozilla oracle |
firefox solaris firefox_esr |
Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 do not enforce key pinning upon encountering an X.509 certificate problem that generates a user dialog, which al… Update |
CWE-310
Cryptographic Issues |
CVE-2015-2741 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 304 | - |
mozilla canonical novell debian oracle |
thunderbird firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remot… Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2740 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 305 | - |
mozilla canonical novell debian oracle |
firefox ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit debian_linux firefox_esr solaris thunderbird |
The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has … Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2739 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 306 | - |
canonical suse debian mozilla oracle |
ubuntu_linux linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux firefox firefox_esr thunderbi… |
The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1… Update |
CWE-17
Code |
CVE-2015-2738 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 307 | - |
mozilla canonical oracle suse debian |
firefox_esr firefox ubuntu_linux solaris linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux
The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from …
Update
|
CWE-17
|
Code
CVE-2015-2737
|
2024-10-22 22:54 |
2015-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
| |
| 308 | - |
mozilla oracle canonical novell debian |
firefox thunderbird firefox_esr solaris ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which all… Update |
CWE-17
Code |
CVE-2015-2736 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 309 | - |
mozilla canonical novell debian oracle |
firefox firefox_esr thunderbird ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to … Update |
CWE-17
Code |
CVE-2015-2735 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 310 | - |
suse mozilla canonical debian oracle |
linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server firefox_esr firefox ubuntu_linux debian_linux thunderbi… |
The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 r… Update |
CWE-17
Code |
CVE-2015-2734 | 2024-10-22 22:54 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm |