CVE-2010-1212
- EPSS 2.73%
- Veröffentlicht 30.07.2010 20:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:51
js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via v...
CVE-2010-1213
- EPSS 0.96%
- Veröffentlicht 30.07.2010 20:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:51
The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not verify that content is valid JavaScript code, which allows r...
CVE-2010-1215
- EPSS 1.49%
- Veröffentlicht 30.07.2010 20:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:52
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper (aka SJOW) wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrom...
- EPSS 1.07%
- Veröffentlicht 30.07.2010 13:26:18
- Zuletzt bearbeitet 16.06.2026 23:21:26
dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppress a script's URL in certain circumstances involving...
CVE-2010-1205
- EPSS 43.38%
- Veröffentlicht 30.06.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:50
Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
CVE-2010-1196
- EPSS 4.88%
- Veröffentlicht 24.06.2010 12:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:48
Integer overflow in the nsGenericDOMDataNode::SetTextInternal function in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a DOM nod...
CVE-2010-1199
- EPSS 11.42%
- Veröffentlicht 24.06.2010 12:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:49
Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a large text value for ...
CVE-2010-1200
- EPSS 5.02%
- Veröffentlicht 24.06.2010 12:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:49
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allow remote attackers to cause a denial of service (memory corruption and ...
CVE-2010-1201
- EPSS 6.12%
- Veröffentlicht 24.06.2010 12:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:50
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.10, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly ex...
CVE-2010-1202
- EPSS 4.71%
- Veröffentlicht 24.06.2010 12:30:01
- Zuletzt bearbeitet 16.06.2026 23:17:50
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allow remote attackers to cause a denial of service (memory corruption a...