CVE-2010-0654
- EPSS 1.87%
- Veröffentlicht 18.02.2010 18:00:00
- Zuletzt bearbeitet 16.06.2026 23:16:35
Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 permit cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type ...
- EPSS 1.03%
- Veröffentlicht 29.01.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:14:03
Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the applica...
- EPSS 1.46%
- Veröffentlicht 07.01.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:44
The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted web site that triggers memory consumption and an acco...
CVE-2009-3388
- EPSS 2.65%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:30
liboggplay in Mozilla Firefox 3.5.x before 3.5.6 and SeaMonkey before 2.0.1 might allow context-dependent attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors, related to "memory safety issues."
CVE-2009-3389
- EPSS 4.79%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:11:31
Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used in Mozilla Firefox 3.5 before 3.5.6 and SeaMonkey before 2.0.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a vid...
CVE-2009-3979
- EPSS 3.96%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:44
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) ...
CVE-2009-3980
- EPSS 3.72%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:45
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execut...
CVE-2009-3981
- EPSS 3.72%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:45
Unspecified vulnerability in the browser engine in Mozilla Firefox before 3.0.16, SeaMonkey before 2.0.1, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary cod...
CVE-2009-3982
- EPSS 3.93%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:45
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe...
CVE-2009-3983
- EPSS 2.2%
- Veröffentlicht 17.12.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:45
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to send authenticated requests to arbitrary applications by replaying the NTLM credentials of a browser user.