Arminius

**Name of the Vulnerable Software and Affected Versions** Vim versions prior to 8.1.1365 Neovim versions prior to 0.3.6 **Description** The issue is related to the lack of filtering in the `:source!` command in a modeline, which allows remote attackers to execute arbitrary OS commands. This can lead to unauthorized access to confidential data, disruption of data integrity, and denial of service. The problem occurs when the modeline mode is enabled, which is on by default and allows setting editing options within a file. **Recommendations** For Vim versions prior to 8.1.1365, update to version 8.1.1365 or later to resolve the issue. For Neovim versions prior to 0.3.6, update to version 0.3.6 or later to resolve the issue. As a temporary workaround, consider disabling the modeline mode by setting `:set nomodeline` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 47.0 **Description** The issue allows remote attackers to bypass the Same Origin Policy and modify the `location.host` property via an invalid `data:` URL. This is related to insufficient access control in the browser, which can be exploited by a remote attacker to circumvent existing access restrictions. **Recommendations** For versions prior to 47.0, update to version 47.0 or later to resolve the issue. As a temporary workaround, consider restricting access to invalid `data:` URLs to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 37.0.1 **Description** The issue arises from the Reader mode feature not properly handling privileged URLs, making it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges. This is achieved by bypassing the Same Origin Policy. **Recommendations** For versions prior to 37.0.1, update to version 37.0.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 37.0 **Description** The issue allows an attacker controlling network traffic to bypass user authentication by deploying a specially crafted website and conducting a DNS spoofing attack against a mozilla.org subdomain. This is possible because the browser does not require an HTTPS session for lightweight theme add-on installations. **Recommendations** For versions prior to 37.0, update to version 37.0 or later to resolve the issue. As a temporary workaround, consider restricting the installation of lightweight theme add-ons to only those that use HTTPS connections, and avoid using unsecured networks to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 36.0 **Description** The issue allows user-assisted remote attackers to read arbitrary files or execute arbitrary JavaScript code with chrome privileges via a crafted web site that is accessed with unspecified mouse and keyboard actions. **Recommendations** For versions prior to 36.0, update to version 36.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 36.0 Firefox ESR versions prior to 31.5 Thunderbird versions prior to 31.5 **Description** The issue allows remote attackers to read arbitrary files via crafted JavaScript code, leveraging the Form Autocompletion feature. **Recommendations** For Mozilla Firefox versions prior to 36.0, update to version 36.0 or later. For Firefox ESR versions prior to 31.5, update to version 31.5 or later. For Thunderbird versions prior to 31.5, update to version 31.5 or later.