Mozilla

Firefox

2867 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2009-3072

  • EPSS 4.69%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.3, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and ap...

10

CVE-2009-3073

  • EPSS 6.87%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

10

CVE-2009-3074

  • EPSS 6.71%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the JavaScript engine in Mozilla Firefox before 3.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

10

CVE-2009-3075

  • EPSS 6.78%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.2, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and...

9.3

CVE-2009-3076

  • EPSS 18.23%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox before 3.0.14 does not properly implement certain dialogs associated with the (1) pkcs11.addmodule and (2) pkcs11.deletemodule operations, which makes it easier for remote attackers to trick a user into installing or removing an arbit...

9.3

CVE-2009-3077

  • EPSS 5.53%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, does not properly manage pointers for the columns (aka TreeColumns) of a XUL tree element, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to a "dangl...

5

CVE-2009-3078

  • EPSS 1.72%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Visual truncation vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, allows remote attackers to trigger a vertical scroll and spoof URLs via unspecified Unicode characters with a tall line-height property.

10

CVE-2009-3079

  • EPSS 1.6%
  • Published 10.09.2009 21:30:01
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, allows remote attackers to execute arbitrary JavaScript with chrome privileges via vectors involving an object, the FeedWriter, and the BrowserFeedWriter.

4.3

CVE-2009-3010

Exploit
  • EPSS 0.39%
  • Published 31.08.2009 16:30:06
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; SeaMonkey 1.1.17; and Mozilla 1.7.x and earlier do not properly block data: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting ...

4.3

CVE-2009-3012

Exploit
  • EPSS 0.25%
  • Published 31.08.2009 16:30:06
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injec...