Mozilla

Firefox

2867 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2013-1700

  • EPSS 0.15%
  • Veröffentlicht 26.06.2013 03:19:10
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges via vectors involving placement of a Trojan horse ...

10

CVE-2013-1681

  • EPSS 2.8%
  • Veröffentlicht 16.05.2013 11:45:31
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsContentUtils::RemoveScriptBlocker function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbi...

10

CVE-2013-0801

  • EPSS 1.56%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allow remote attackers to cause a denial of service (memory c...

10

CVE-2013-1669

  • EPSS 2.38%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

4.3

CVE-2013-1670

  • EPSS 45.98%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content...

4.3

CVE-2013-1671

  • EPSS 0.58%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 21.0 does not properly implement the INPUT element, which allows remote attackers to obtain the full pathname via a crafted web site.

6.9

CVE-2013-1672

  • EPSS 0.02%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Mozilla Maintenance Service in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 on Windows allows local users to bypass integrity verification and gain privileges via v...

6.9

CVE-2013-1673

  • EPSS 0.05%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versions, which allows local users to gain privileges by...

9.3

CVE-2013-1674

  • EPSS 4.03%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code via vectors involving an onresize event d...

6.5

CVE-2013-1675

Warnung Exploit
  • EPSS 2.57%
  • Veröffentlicht 16.05.2013 11:45:30
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 do not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale funct...