Vulnerabilities (CVE)

Filtered by vendor Mozilla Subscribe
Filtered by product Netscape Portable Runtime
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-1951 1 Mozilla 1 Netscape Portable Runtime 2024-11-21 7.5 HIGH 8.6 HIGH
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
CVE-2014-1545 1 Mozilla 1 Netscape Portable Runtime 2024-11-21 10.0 HIGH N/A
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
CVE-2013-5607 1 Mozilla 4 Firefox, Firefox Esr, Netscape Portable Runtime and 1 more 2024-11-21 7.5 HIGH N/A
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.