Mozilla

Firefox

2867 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2012-1955

  • EPSS 2.58%
  • Veröffentlicht 18.07.2012 10:26:48
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allow remote attackers to spoof the address bar via vectors involving history.forward and hi...

4.3

CVE-2012-1957

  • EPSS 1%
  • Veröffentlicht 18.07.2012 10:26:48
  • Zuletzt bearbeitet 11.04.2025 00:51:21

An unspecified parser-utility class in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 does not properly handle EMBED elements within descri...

9.3

CVE-2012-1958

  • EPSS 3.87%
  • Veröffentlicht 18.07.2012 10:26:48
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsGlobalWindow::PageHidden function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 might allow remot...

5

CVE-2012-1959

  • EPSS 0.93%
  • Veröffentlicht 18.07.2012 10:26:48
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not consider the presence of same-compartment security wrappers (SCSW) during the cross-c...

5

CVE-2012-1960

  • EPSS 0.54%
  • Veröffentlicht 18.07.2012 10:26:48
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS implementation in Mozilla Firefox 4.x through 13.0, Thunderbird 5.0 through 13.0, and SeaMonkey before 2.11 might allow remote attackers to obtain sensitive information from process memory...

7.5

CVE-2011-3671

  • EPSS 1.76%
  • Veröffentlicht 18.06.2012 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsHTMLSelectElement function in nsHTMLSelectElement.cpp in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allows remote attackers to execute arbitrary code via vectors involv...

5

CVE-2012-0441

  • EPSS 3.58%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The ASN.1 decoder in the QuickDER decoder in Mozilla Network Security Services (NSS) before 3.13.4, as used in Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey b...

9.3

CVE-2012-1937

  • EPSS 1.72%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allow remote attackers to caus...

9.3

CVE-2012-1938

Exploit
  • EPSS 1.25%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 13.0, Thunderbird before 13.0, and SeaMonkey before 2.10 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly ex...

9.3

CVE-2012-1939

  • EPSS 4.41%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ESR 10.x before 10.0.5 does not properly determine data types, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly exec...