Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.0.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2043
nsViewManager.cpp in Mozilla Firefox 3.0.2 up to and including 3.0.10 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors related to interaction with TinyMCE.
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.9
1 EDB exploit
NA
CVE-2009-1313
The nsTextFrame::ClearTextRun function in layout/generic/nsTextFrameThebes.cpp in Mozilla Firefox 3.0.9 allows remote malicious users to cause a denial of service (memory corruption) and probably execute arbitrary code via unspecified vectors. NOTE: this vulnerability reportedly ...
Mozilla Firefox 3.0.9
1 EDB exploit
NA
CVE-2009-1839
Mozilla Firefox 3 prior to 3.0.11 associates an incorrect principal with a file: URL loaded through the location bar, which allows user-assisted remote malicious users to bypass intended access restrictions and read files via a crafted HTML document, aka a "file-URL-to-file-...
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.2
Mozilla Firefox
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.1
Mozilla Firefox 3.0beta5
1 EDB exploit
NA
CVE-2009-2953
Mozilla Firefox 3.0.6 up to and including 3.0.13, and 3.5.x, allows remote malicious users to cause a denial of service (CPU consumption) via JavaScript code with a long string value for the hash property (aka location.hash), a related issue to CVE-2008-5715.
Mozilla Firefox 3.0.13
Mozilla Firefox 3.5
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.10
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
1 EDB exploit
NA
CVE-2009-3382
layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x prior to 3.0.15 does not properly handle first-letter frames, which allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitr...
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
1 EDB exploit
NA
CVE-2009-1840
Mozilla Firefox prior to 3.0.11, Thunderbird, and SeaMonkey do not check content policy before loading a script file into a XUL document, which allows remote malicious users to bypass intended access restrictions via a crafted HTML document, as demonstrated by a "web bug&quo...
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.2
Mozilla Firefox
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0
Mozilla Firefox 3.0beta5
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.1
Mozilla Firefox 3.0.5
Mozilla Thunderbird
Mozilla Seamonkey
NA
CVE-2009-3380
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x prior to 3.0.15 and 3.5.x prior to 3.5.4 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.5
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.3
NA
CVE-2009-3374
The XPCVariant::VariantDataToJS function in the XPCOM implementation in Mozilla Firefox 3.0.x prior to 3.0.15 and 3.5.x prior to 3.5.4 does not enforce intended restrictions on interaction between chrome privileged code and objects obtained from remote web sites, which allows rem...
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
NA
CVE-2009-3012
Mozilla Firefox 3.0.13 and previous versions, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Locatio...
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.9
Mozilla Firefox 3.5
Mozilla Firefox 3.7
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.5
Mozilla Firefox
Mozilla Firefox 3.6
NA
CVE-2009-3370
Mozilla Firefox prior to 3.0.15, and 3.5.x prior to 3.5.4, allows remote malicious users to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.5
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »