Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.55%
  • Veröffentlicht 02.06.2006 19:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:46

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 1.5.0.4 allows user-assisted remote attackers to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute...

  • EPSS 4.57%
  • Veröffentlicht 02.06.2006 18:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:43

Mozilla Firefox and Thunderbird before 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote attackers to bypass restrictions by causing a persisted string to be associated with the wro...

  • EPSS 6.24%
  • Veröffentlicht 02.06.2006 18:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:43

Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended.

  • EPSS 6.03%
  • Veröffentlicht 02.06.2006 18:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:44

Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifica...

  • EPSS 4.91%
  • Veröffentlicht 02.06.2006 18:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:44

The crypto.signText function in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer over...

Exploit
  • EPSS 3%
  • Veröffentlicht 01.06.2006 01:02:00
  • Zuletzt bearbeitet 16.06.2026 22:25:37

Unspecified versions of Mozilla Firefox allow remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags. NOTE: a followup post indicated that the initial report could not be verified.

Exploit
  • EPSS 1.66%
  • Veröffentlicht 26.05.2006 01:06:00
  • Zuletzt bearbeitet 16.06.2026 22:25:24

Mozilla Suite 1.7.13, Mozilla Firefox 1.5.0.3 and possibly other versions before before 1.8.0, and Netscape 7.2 and 8.1, and possibly other versions and products, allows remote user-assisted attackers to obtain information such as the installation pa...

  • EPSS 1.89%
  • Veröffentlicht 22.05.2006 23:10:00
  • Zuletzt bearbeitet 16.06.2026 22:25:16

IE Tab 1.0.9 plugin for Mozilla Firefox 1.5.0.3 allows remote user-assisted attackers to cause a denial of service (application crash), possibly due to a null dereference, via certain Javascript, as demonstrated using a url parameter to the content/r...

  • EPSS 1.18%
  • Veröffentlicht 12.05.2006 00:02:00
  • Zuletzt bearbeitet 16.06.2026 22:24:48

Mozilla Firefox 1.5.0.3 allows remote attackers to cause a denial of service via a web page with a large number of IMG elements in which the SRC attribute is a mailto URI. NOTE: another researcher found that the web page caused a temporary browser s...

  • EPSS 1.65%
  • Veröffentlicht 26.04.2006 20:06:00
  • Zuletzt bearbeitet 16.06.2026 22:24:15

Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " (double quote) characters in a mailto: scheme handler, as demonstrated by launching Micro...