Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 21.0 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2013-1715
Multiple untrusted search path vulnerabilities in the (1) full installer and (2) stub installer in Mozilla Firefox prior to 23.0 on Windows allow local users to gain privileges via a Trojan horse DLL in the default downloads directory. NOTE: this issue exists because of an incomp...
Mozilla Firefox 19.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox 21.0Mozilla Firefox
NA
CVE-2013-1729
The WebGL implementation in Mozilla Firefox prior to 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote malicious users to obtain desktop-screenshot data by reading from a CANVAS element.
Mozilla Firefox 20.0Mozilla FirefoxMozilla Firefox 23.0Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1
NA
CVE-2013-1727
Mozilla Firefox prior to 24.0 on Android allows malicious users to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.
Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla Firefox 20.0Mozilla FirefoxMozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 23.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1
NA
CVE-2013-1731
Untrusted search path vulnerability in the GL tracing functionality in Mozilla Firefox prior to 24.0 on Android allows malicious users to execute arbitrary code via a Trojan horse .so file in a world-writable directory.
Mozilla Firefox 22.0Mozilla Firefox 21.0Mozilla Firefox 19.0.2Mozilla FirefoxMozilla Firefox 23.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0Mozilla Firefox 20.0.1Mozilla Firefox 20.0
NA
CVE-2013-5592
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 25.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0.1Mozilla Firefox 20.0Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 19.0Mozilla FirefoxMozilla Firefox 23.0.1Mozilla Firefox 23.0Mozilla Firefox 22.0Mozilla Firefox 21.0
NA
CVE-2013-5598
PDF.js in Mozilla Firefox prior to 25.0 and Firefox ESR 24.x prior to 24.1 does not properly handle the appending of an IFRAME element, which allows remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges by using this element wi...
Mozilla Firefox Esr 24.0.1Mozilla Firefox Esr 24.0.2Mozilla Firefox Esr 24.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 23.0Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla FirefoxMozilla Firefox 20.0Mozilla Firefox 23.0.1
NA
CVE-2013-1669
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 21.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 19.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 20.0Mozilla Firefox
NA
CVE-2013-1706
Stack-based buffer overflow in maintenanceservice.exe in the Mozilla Maintenance Service in Mozilla Firefox prior to 23.0, Firefox ESR 17.x prior to 17.0.8, Thunderbird prior to 17.0.8, and Thunderbird ESR 17.x prior to 17.0.8 allows local users to gain privileges via a long path...
Mozilla Firefox Esr 17.0.1Mozilla Firefox Esr 17.0Mozilla Firefox Esr 17.0.5Mozilla Firefox Esr 17.0.6Mozilla Firefox Esr 17.0.3Mozilla Firefox Esr 17.0.4Mozilla Firefox Esr 17.0.7Mozilla Firefox Esr 17.0.2Mozilla Thunderbird 17.0.2Mozilla Thunderbird 17.0Mozilla Thunderbird 17.0.4Mozilla Thunderbird 17.0.5Mozilla Thunderbird 17.0.1Mozilla Thunderbird 17.0.3Mozilla ThunderbirdMozilla Thunderbird 17.0.6Mozilla Thunderbird Esr 17.0.7Mozilla Thunderbird Esr 17.0Mozilla Thunderbird Esr 17.0.3Mozilla Thunderbird Esr 17.0.4Mozilla Thunderbird Esr 17.0.1Mozilla Thunderbird Esr 17.0.2
NA
CVE-2013-1707
Stack-based buffer overflow in Mozilla Updater in Mozilla Firefox prior to 23.0, Firefox ESR 17.x prior to 17.0.8, Thunderbird prior to 17.0.8, and Thunderbird ESR 17.x prior to 17.0.8 allows local users to gain privileges via a long pathname on the command line to the Mozilla Ma...
Mozilla Thunderbird 17.0.1Mozilla Thunderbird 17.0.3Mozilla ThunderbirdMozilla Thunderbird 17.0.6Mozilla Thunderbird 17.0.4Mozilla Thunderbird 17.0.5Mozilla Thunderbird 17.0.2Mozilla Thunderbird 17.0Mozilla Thunderbird Esr 17.0.1Mozilla Thunderbird Esr 17.0.2Mozilla Thunderbird Esr 17.0.3Mozilla Thunderbird Esr 17.0.6Mozilla Thunderbird Esr 17.0.4Mozilla Thunderbird Esr 17.0.5Mozilla Thunderbird Esr 17.0.7Mozilla Thunderbird Esr 17.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 21.0Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox
NA
CVE-2013-1712
Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Updater in Mozilla Firefox prior to 23.0, Firefox ESR 17.x prior to 17.0.8, Thunderbird prior to 17.0.8, and Thunderbird ESR 17.x prior to 17.0.8 on Windows 7, Windows Server 2008 R2, Windows 8, and Windows ...
Mozilla Thunderbird Esr 17.0.7Mozilla Thunderbird Esr 17.0.6Mozilla Firefox Esr 17.0.7Mozilla Firefox Esr 17.0.6Mozilla ThunderbirdMozilla FirefoxMozilla Firefox 19.0Mozilla Thunderbird Esr 17.0Mozilla Thunderbird Esr 17.0.1Mozilla Firefox Esr 17.0.2Mozilla Firefox Esr 17.0.1Mozilla Thunderbird 17.0.2Mozilla Thunderbird 17.0Mozilla Thunderbird 17.0.1Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Thunderbird Esr 17.0.2Mozilla Thunderbird Esr 17.0.3Mozilla Firefox Esr 17.0Mozilla Firefox Esr 17.0.3Mozilla Thunderbird 17.0.3Mozilla Thunderbird 17.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook