Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 22.11%
  • Veröffentlicht 26.08.2010 18:36:35
  • Zuletzt bearbeitet 16.06.2026 23:22:11

Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 on Windows XP allows local users, and possibly remote attackers, to execute arbit...

Exploit
  • EPSS 1.87%
  • Veröffentlicht 30.07.2010 20:30:02
  • Zuletzt bearbeitet 16.06.2026 23:21:26

The nsDocShell::OnRedirectStateChange function in docshell/base/nsDocShell.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to spoof the SSL security status of a document via vecto...

  • EPSS 9.78%
  • Veröffentlicht 30.07.2010 20:30:02
  • Zuletzt bearbeitet 16.06.2026 23:21:26

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Casc...

Exploit
  • EPSS 6.67%
  • Veröffentlicht 30.07.2010 20:30:02
  • Zuletzt bearbeitet 16.06.2026 23:21:26

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a X...

  • EPSS 1.36%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote attackers to obtain sensitive cross-origin information via vectors involving reference retention and node d...

  • EPSS 5.15%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

Use-after-free vulnerability in the attribute-cloning functionality in the DOM implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via vectors rel...

  • EPSS 5.38%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via a crafted NodeFilter that detaches DOM no...

  • EPSS 1.34%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

intl/uconv/util/nsUnicodeDecodeHelper.cpp in Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 inserts a U+FFFD sequence into text in certain circumstances involving undefined positions, which might make it easier for remote attackers to cond...

  • EPSS 3.73%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allow remote attackers to cause a denial of se...

  • EPSS 2.73%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 16.06.2026 23:17:51

js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via v...