Mozilla

Firefox

3184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 8.22%
  • Veröffentlicht 31.12.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:19:18

Mozilla Firefox 1.0.7 and earlier on Linux allows remote attackers to cause a denial of service (client crash) via an IFRAME element with a large value of the WIDTH attribute, which triggers a problem related to representation of floating-point numbe...

Exploit
  • EPSS 5.89%
  • Veröffentlicht 31.12.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:19:29

Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla and Thunderbird, allows remote attackers to spoof the URL in the Status Bar via an A HREF tag that contains a TABLE tag that contains another A tag.

  • EPSS 12.59%
  • Veröffentlicht 09.12.2005 15:03:00
  • Zuletzt bearbeitet 16.06.2026 22:18:13

Mozilla Firefox 1.5, Netscape 8.0.4 and 7.2, and K-Meleon before 0.9.12 allows remote attackers to cause a denial of service (CPU consumption and delayed application startup) via a web site with a large title, which is recorded in history.dat but not...

  • EPSS 1.68%
  • Veröffentlicht 28.09.2005 18:03:00
  • Zuletzt bearbeitet 16.06.2026 22:16:13

Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in triggering this issue, so it might not be a vulnera...

  • EPSS 6.86%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:30

Heap-based buffer overflow in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to execute arbitrary code via an XBM image file that ends in a large number of spaces instead of the expected end tag.

  • EPSS 3.62%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:30

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters.

  • EPSS 1.79%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:30

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smugglin...

  • EPSS 1.82%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:30

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface.

  • EPSS 3.62%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:30

Integer overflow in the JavaScript engine in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 might allow remote attackers to execute arbitrary code.

  • EPSS 2.76%
  • Veröffentlicht 23.09.2005 19:03:00
  • Zuletzt bearbeitet 16.06.2026 22:15:31

Firefox before 1.0.7 and Mozilla before Suite 1.7.12 allows remote attackers to execute Javascript with chrome privileges via an about: page such as about:mozilla.