Aral Yaman

Researcher fromMozilla
#9681of 53,633
28.6Total CVSS
Vulnerabilities · 3
High
2
Critical
1
PT-2019-2184
9.8
2019-03-19
Mozilla · Firefox Esr · CVE-2019-9788
**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 66 Firefox ESR versions prior to 60.6 Thunderbird versions prior to 60.6 **Description** The issue is related to memory safety bugs and buffer copying without checking the size of input data, which could potentially be exploited to run arbitrary code. This may lead to memory corruption. **Recommendations** For Firefox versions prior to 66, update to version 66 or later. For Firefox ESR versions prior to 60.6, update to version 60.6 or later. For Thunderbird versions prior to 60.6, update to version 60.6 or later.
PT-2016-2201
8.8
2016-06-07
Mozilla · Firefox Esr · CVE-2016-2824
**Name of the Vulnerable Software and Affected Versions** ANGLE versions prior to 47.0 Mozilla Firefox versions prior to 47.0 Mozilla Firefox ESR 45.x versions prior to 45.2 **Description** The issue is related to the TSymbolTableLevel class in ANGLE, which can be exploited by triggering the use of a WebGL shader that writes to an array. This can cause a denial of service, resulting in an out-of-bounds write and application crash, or possibly have other unspecified impacts. **Recommendations** For ANGLE versions prior to 47.0, update to version 47.0 or later. For Mozilla Firefox versions prior to 47.0, update to version 47.0 or later. For Mozilla Firefox ESR 45.x versions prior to 45.2, update to version 45.2 or later.
PT-2011-4228
10
2011-08-16
Mozilla · Thunderbird · CVE-2011-2989
**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 4.x through 5 SeaMonkey versions 2.x before 2.3 Thunderbird versions prior to 6 **Description** The issue is related to the improper implementation of WebGL in the browser engine, which can be exploited by remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execute arbitrary code via unspecified vectors. **Recommendations** For Mozilla Firefox versions 4.x through 5, update to a version outside of this range to resolve the issue. For SeaMonkey versions 2.x before 2.3, update to version 2.3 or later to resolve the issue. For Thunderbird versions prior to 6, update to version 6 or later to resolve the issue.