CVE-2011-2373
- EPSS 4.96%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:12
Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.
- EPSS 5.46%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:12
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...
- EPSS 5.51%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:13
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...
- EPSS 4.37%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:13
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and Thunderbird before 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code...
- EPSS 3.77%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:13
Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a multip...
CVE-2011-2605
- EPSS 1.03%
- Veröffentlicht 30.06.2011 16:55:05
- Zuletzt bearbeitet 16.06.2026 23:31:38
CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to bypass inten...
- EPSS 5.77%
- Veröffentlicht 30.06.2011 16:55:04
- Zuletzt bearbeitet 16.06.2026 23:26:46
Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to cause a denial ...
- EPSS 5.57%
- Veröffentlicht 30.06.2011 16:55:04
- Zuletzt bearbeitet 16.06.2026 23:26:46
Use-after-free vulnerability in the nsXULCommandDispatcher function in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via a crafted XUL document that dequeues t...
CVE-2011-2366
- EPSS 1.42%
- Veröffentlicht 30.06.2011 15:55:03
- Zuletzt bearbeitet 16.06.2026 23:31:11
Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack invo...
- EPSS 6.86%
- Veröffentlicht 07.05.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:26:44
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory cor...