Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

gnome gnome-vfs vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2007-5337
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5, when running on Linux systems with gnome-vfs support, might allow remote malicious users to read arbitrary files on SSH/sftp servers that accept key authentication by creating a web page on the target server, in which...
Gnome Gnome-vfsMozilla FirefoxMozilla Seamonkey
NA
CVE-2004-0494
Multiple extfs backend scripts for GNOME virtual file system (VFS) prior to 1.0.1 may allow remote malicious users to perform certain unauthorized actions via a gnome-vfs URI.
Avaya CvlanRedhat Enterprise Linux 2.1Redhat Enterprise Linux 3.0Redhat Enterprise Linux Desktop 3.0Redhat Linux Advanced Workstation 2.1
NA
CVE-2005-0706
Buffer overflow in discdb.c for grip 3.1.2 allows malicious users to cause a denial of service (crash) and possibly execute arbitrary code by causing the cddb lookup to return more matches than expected.
Grip Grip 2.9.6Grip Grip 3.1.2Grip Grip 3.1.4Grip Grip 3.2.0
NA
CVE-2005-1686
Format string vulnerability in gedit 2.10.2 may allow malicious users to cause a denial of service (application crash) via a bin file with format string specifiers in the filename. NOTE: while this issue is triggered on the command line by the gedit user, it has been reported tha...
Gnome Gedit 2.10.2
NA
CVE-2010-0168
The nsDocument::MaybePreLoadImage function in content/base/src/nsDocument.cpp in the image-preloading implementation in Mozilla Firefox 3.6 prior to 3.6.2 does not apply scheme restrictions and policy restrictions to the image's URL, which might allow remote malicious users ...
Mozilla Firefox 3.6.1Mozilla Firefox 3.6
NA
CVE-2007-3511
The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions prior to 2.0.0.8, and SeaMonkey prior to 1.1.5 allows remote malicious users to change field focus and copy keystrokes via the "for" attribute in a label, which bypasses t...
Mozilla Seamonkey 1.0.3Mozilla Seamonkey 1.0.1Mozilla Seamonkey 1.0.6Mozilla Seamonkey 1.0.9Mozilla Seamonkey 1.1.3Mozilla Seamonkey 1.0Mozilla Seamonkey 1.0.99Mozilla Seamonkey 1.0.7Mozilla SeamonkeyMozilla Seamonkey 1.1Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.0.2Mozilla Seamonkey 1.0.8Mozilla Seamonkey 1.1.1Mozilla Seamonkey 1.0.5Mozilla Firefox 1.5.0.12Mozilla Firefox 2.0.0.6Mozilla Firefox 2.0.0.4Mozilla Seamonkey 1.0.4Mozilla FirefoxMozilla Firefox 2.0.0.5
NA
CVE-2007-2292
CRLF injection vulnerability in the Digest Authentication support for Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 allows remote malicious users to conduct HTTP request splitting attacks via LF (%0a) bytes in the username attribute.
Mozilla FirefoxMozilla SeamonkeyMicrosoft Internet Explorer 7.0.5730.11
NA
CVE-2007-1095
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote malicious users to run certain JavaScript code and access the location DOM hierarchy in the context of the next web site that is visited by a ...
Mozilla Firefox 1.0.5Mozilla Firefox 1.0.4Mozilla Firefox 1.0.1Mozilla Firefox 1.0Mozilla Firefox 1.5Mozilla Firefox 1.0.8Mozilla Firefox 1.4.1Mozilla Firefox 1.5.0.12Mozilla Firefox 1.5.0.1Mozilla Firefox 1.5.0.8Mozilla Firefox 1.5.0.9Mozilla Firefox 1.5.5Mozilla Firefox 2.0Mozilla Firefox 2.0.0.2Mozilla Firefox 0.10Mozilla Firefox 0.9Mozilla Firefox 0.6.1Mozilla Firefox 0.2Mozilla Firefox 1.5.0.5Mozilla Firefox 1.5.0.2Mozilla Firefox 1.5.3Mozilla Firefox 1.5.4
NA
CVE-2007-5334
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote malicious users to conduct phishing and spoofing attacks by setting the hidechrome attribute.
Mozilla FirefoxMozilla Seamonkey
NA
CVE-2006-2894
Mozilla Firefox 1.5.0.4, 2.0.x prior to 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions prior to 1.1.5, and Netscape 8.1 and previous versions allow user-assisted remote malicious users to read arbitrary files by tricking a user into typing the character...
Netscape NavigatorMozilla FirefoxMozilla SeamonkeyMozilla Firefox 1.5.0.4Mozilla Mozilla Suite 1.7.13Mozilla Seamonkey 1.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333CVE-2024-33901CVE-2024-36001CVE-2024-2835firewallXPath injectionauthentication bypassCVE-2024-22120CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook