Mozilla

Firefox

2867 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2011-2364

  • EPSS 1.53%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

10

CVE-2011-2365

  • EPSS 1.76%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

6.4

CVE-2011-2367

  • EPSS 0.68%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict read operations, which allows remote attackers to obtain sensitive information from GPU memory associated with an arbitrary process, or cause a denial of service...

10

CVE-2011-2368

  • EPSS 4.63%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

4.3

CVE-2011-2369

  • EPSS 0.26%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attackers to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity.

5

CVE-2011-2370

  • EPSS 0.31%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 5.0 does not properly enforce the whitelist for the xpinstall functionality, which allows remote attackers to trigger an installation dialog for a (1) add-on or (2) theme via unspecified vectors.

10

CVE-2011-2371

  • EPSS 87%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript...

7.6

CVE-2011-2373

  • EPSS 2.71%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.

10

CVE-2011-2374

  • EPSS 4%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...

10

CVE-2011-2375

  • EPSS 2.01%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...