Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.13%
  • Veröffentlicht 10.07.2007 19:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:28

Mozilla Firefox 2.0.0.4 allows remote attackers to cause a denial of service by opening multiple tabs in a popup window. NOTE: this issue has been disputed by third party researchers, stating that "this does not crash on me, and I can't see a likely...

  • EPSS 29.36%
  • Veröffentlicht 10.07.2007 19:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:29

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell m...

Exploit
  • EPSS 2.36%
  • Veröffentlicht 03.07.2007 10:30:00
  • Zuletzt bearbeitet 16.06.2026 22:42:11

The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to change field focus and copy keystrokes via the "for" attribute in a label, which ...

Exploit
  • EPSS 1.75%
  • Veröffentlicht 20.06.2007 19:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:25

Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote attackers to bypass file type checks and possibly execute programs via a (1) file:/// or (2) resource: URI with a dangerous extension, followed by a NULL byte (%00) and a safer extens...

  • EPSS 2.77%
  • Veröffentlicht 06.06.2007 21:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:02

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript cod...

Exploit
  • EPSS 1.58%
  • Veröffentlicht 06.06.2007 10:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:00

Directory traversal vulnerability in Mozilla Firefox before 2.0.0.4 on Windows allows remote attackers to read arbitrary files via ..%5C (dot dot encoded backslash) sequences in a resource:// URI.

  • EPSS 1.69%
  • Veröffentlicht 06.06.2007 10:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:00

Directory traversal vulnerability in Mozilla Firefox 2.0.0.4 and earlier on Mac OS X and Unix allows remote attackers to read arbitrary files via ..%2F (dot dot encoded slash) sequences in a resource:// URI.

Exploit
  • EPSS 1.18%
  • Veröffentlicht 06.06.2007 10:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:01

Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read files in the local Firefox installation directory via a resource:// URI.

  • EPSS 7.83%
  • Veröffentlicht 01.06.2007 00:30:00
  • Zuletzt bearbeitet 16.06.2026 22:37:26

Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to cause a denial of service via (1) a large cookie path parameter, which triggers memory consumption, or (2) an internal delimiter w...

  • EPSS 3.41%
  • Veröffentlicht 01.06.2007 00:30:00
  • Zuletzt bearbeitet 16.06.2026 22:40:35

Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of servic...