Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 22.0 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2013-1729
The WebGL implementation in Mozilla Firefox prior to 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote malicious users to obtain desktop-screenshot data by reading from a CANVAS element.
Mozilla Firefox 20.0Mozilla FirefoxMozilla Firefox 23.0Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1
NA
CVE-2013-1731
Untrusted search path vulnerability in the GL tracing functionality in Mozilla Firefox prior to 24.0 on Android allows malicious users to execute arbitrary code via a Trojan horse .so file in a world-writable directory.
Mozilla Firefox 22.0Mozilla Firefox 21.0Mozilla Firefox 19.0.2Mozilla FirefoxMozilla Firefox 23.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0Mozilla Firefox 20.0.1Mozilla Firefox 20.0
NA
CVE-2013-1727
Mozilla Firefox prior to 24.0 on Android allows malicious users to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.
Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla Firefox 20.0Mozilla FirefoxMozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 23.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1
NA
CVE-2013-5592
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 25.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0.1Mozilla Firefox 20.0Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 19.0Mozilla FirefoxMozilla Firefox 23.0.1Mozilla Firefox 23.0Mozilla Firefox 22.0Mozilla Firefox 21.0
NA
CVE-2013-5598
PDF.js in Mozilla Firefox prior to 25.0 and Firefox ESR 24.x prior to 24.1 does not properly handle the appending of an IFRAME element, which allows remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges by using this element wi...
Mozilla Firefox Esr 24.0.1Mozilla Firefox Esr 24.0.2Mozilla Firefox Esr 24.0Mozilla Firefox 21.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.2Mozilla Firefox 19.0.1Mozilla Firefox 23.0Mozilla Firefox 19.0Mozilla Firefox 22.0Mozilla FirefoxMozilla Firefox 20.0Mozilla Firefox 23.0.1
NA
CVE-2013-1683
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 22.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 19.0Mozilla Firefox
NA
CVE-2013-1700
The Mozilla Maintenance Service in Mozilla Firefox prior to 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges via vectors involving placement of a Trojan horse executable file at an arbitr...
Mozilla Firefox 19.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla FirefoxMozilla Firefox 20.0Mozilla Firefox 20.0.1
NA
CVE-2013-1696
Mozilla Firefox prior to 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote malicious users to conduct clickjacking attacks via a crafted web site that uses the HTTP server push feature with multipart responses.
Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0Mozilla Firefox
NA
CVE-2013-1698
The getUserMedia permission implementation in Mozilla Firefox prior to 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote malicious users to trick users into permitting camera or microphone access via a crafted ...
Mozilla Firefox 19.0Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox
NA
CVE-2013-1688
The Profiler implementation in Mozilla Firefox prior to 22.0 parses untrusted data during UI rendering, which allows user-assisted remote malicious users to execute arbitrary JavaScript code via a crafted web site.
Mozilla FirefoxMozilla Firefox 19.0Mozilla Firefox 20.0Mozilla Firefox 20.0.1Mozilla Firefox 19.0.1Mozilla Firefox 19.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook