Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.22%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:11

The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

  • EPSS 1.35%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attackers to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity.

  • EPSS 0.98%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Mozilla Firefox before 5.0 does not properly enforce the whitelist for the xpinstall functionality, which allows remote attackers to trigger an installation dialog for a (1) add-on or (2) theme via unspecified vectors.

  • EPSS 75.69%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript...

  • EPSS 4.96%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.

  • EPSS 5.46%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...

  • EPSS 5.51%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:13

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...

  • EPSS 4.37%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:13

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and Thunderbird before 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code...

  • EPSS 3.77%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:13

Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a multip...

  • EPSS 1.03%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 16.06.2026 23:31:38

CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to bypass inten...