Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 5.37%
  • Veröffentlicht 29.10.2009 14:30:01
  • Zuletzt bearbeitet 16.06.2026 23:11:29

Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overla...

  • EPSS 5.46%
  • Veröffentlicht 29.10.2009 14:30:01
  • Zuletzt bearbeitet 16.06.2026 23:11:29

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code ...

  • EPSS 4.94%
  • Veröffentlicht 29.10.2009 14:30:01
  • Zuletzt bearbeitet 16.06.2026 23:11:30

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

  • EPSS 10.84%
  • Veröffentlicht 29.10.2009 14:30:01
  • Zuletzt bearbeitet 16.06.2026 23:11:30

layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service (memory corruption and application crash) or p...

  • EPSS 4.34%
  • Veröffentlicht 29.10.2009 14:30:01
  • Zuletzt bearbeitet 16.06.2026 23:11:30

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

  • EPSS 1.98%
  • Veröffentlicht 29.10.2009 14:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:28

Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.

Exploit
  • EPSS 7.17%
  • Veröffentlicht 29.10.2009 14:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:28

Use-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code by creating JavaScript web-workers recursively.

  • EPSS 3.99%
  • Veröffentlicht 29.10.2009 14:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:28

Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via a crafted regular expression in a Proxy Auto-configuration (PAC) file.

  • EPSS 15.52%
  • Veröffentlicht 29.10.2009 14:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:28

Heap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via unspecified vectors.

  • EPSS 1.98%
  • Veröffentlicht 29.10.2009 14:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:28

The XPCVariant::VariantDataToJS function in the XPCOM implementation in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 does not enforce intended restrictions on interaction between chrome privileged code and objects obtained from remote w...