mozilla firefox 20.0 vulnerabilities and exploits

(subscribe to this query)

Mozilla Firefox 20.0a1 and previous versions allows remote malicious users to cause a denial of service (crash), related to event handling with frames.

Mozilla Firefox Mozilla Firefox 20.0

The Mozilla Updater in Mozilla Firefox prior to 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versions, which allows local users to gain privileges by leveraging write access to ...

Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 20.0 Mozilla Firefox Mozilla Firefox 19.0

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 21.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Mozilla Firefox 19.0 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 20.0 Mozilla Firefox

Mozilla Firefox prior to 21.0 does not properly implement the INPUT element, which allows remote malicious users to obtain the full pathname via a crafted web site.

Mozilla Firefox Mozilla Firefox 19.0 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 20.0

Mozilla Firefox prior to 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote malicious users to conduct clickjacking attacks via a crafted web site that uses the HTTP server push feature with multipart responses.

Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox 19.0 Mozilla Firefox

The getUserMedia permission implementation in Mozilla Firefox prior to 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote malicious users to trick users into permitting camera or microphone access via a crafted ...

Mozilla Firefox 19.0 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox

The Mozilla Maintenance Service in Mozilla Firefox prior to 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges via vectors involving placement of a Trojan horse executable file at an arbitr...

Mozilla Firefox 19.0 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox Mozilla Firefox 20.0 Mozilla Firefox 20.0.1

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 22.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 19.0 Mozilla Firefox

The Profiler implementation in Mozilla Firefox prior to 22.0 parses untrusted data during UI rendering, which allows user-assisted remote malicious users to execute arbitrary JavaScript code via a crafted web site.

Mozilla Firefox Mozilla Firefox 19.0 Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2

Mozilla Firefox prior to 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote malicious users to bypass intended access restrictions via a FRAME element within an IFRAME element.

Mozilla Firefox 20.0 Mozilla Firefox 20.0.1 Mozilla Firefox Mozilla Firefox 19.0.1 Mozilla Firefox 19.0.2 Mozilla Firefox 19.0

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook