Mozilla

Firefox

2867 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2011-2364

  • EPSS 1.53%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

10

CVE-2011-2365

  • EPSS 1.76%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

6.4

CVE-2011-2367

  • EPSS 0.68%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict read operations, which allows remote attackers to obtain sensitive information from GPU memory associated with an arbitrary process, or cause a denial of service...

10

CVE-2011-2368

  • EPSS 4.63%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

4.3

CVE-2011-2369

  • EPSS 0.26%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attackers to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity.

5

CVE-2011-2370

  • EPSS 0.31%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox before 5.0 does not properly enforce the whitelist for the xpinstall functionality, which allows remote attackers to trigger an installation dialog for a (1) add-on or (2) theme via unspecified vectors.

10

CVE-2011-2371

  • EPSS 87%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript...

7.6

CVE-2011-2373

  • EPSS 2.71%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.

10

CVE-2011-2374

  • EPSS 4%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...

10

CVE-2011-2375

  • EPSS 2.01%
  • Published 30.06.2011 16:55:05
  • Last modified 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...