Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.5.4 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2009-3371
Use-after-free vulnerability in Mozilla Firefox 3.5.x prior to 3.5.4 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code by creating JavaScript web-workers recursively.
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.1
10
CVSSv2
CVE-2010-1122
Unspecified vulnerability in Mozilla Firefox 3.5.x up to and including 3.5.8 allows remote malicious users to cause a denial of service (memory corruption and application crash) and possibly have unknown other impact via vectors that might involve compressed data, a different vul...
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5
1 Github repository
4.3
CVSSv2
CVE-2010-2117
Mozilla Firefox 3.0.19, 3.5.x, and 3.6.x allows remote malicious users to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.0.19
Mozilla Firefox 3.5
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.9
5
CVSSv2
CVE-2009-2953
Mozilla Firefox 3.0.6 up to and including 3.0.13, and 3.5.x, allows remote malicious users to cause a denial of service (CPU consumption) via JavaScript code with a long string value for the hash property (aka location.hash), a related issue to CVE-2008-5715.
Mozilla Firefox 3.0.13
Mozilla Firefox 3.5
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.10
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
1 EDB exploit
5
CVSSv2
CVE-2009-3988
Mozilla Firefox 3.0.x prior to 3.0.18 and 3.5.x prior to 3.5.8, and SeaMonkey prior to 2.0.3, does not properly restrict read access to object properties in showModalDialog, which allows remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS...
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.15
Mozilla Firefox
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Seamonkey 2.0
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.5
Mozilla Firefox 3.5
Mozilla Firefox 3.5.1
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.9
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.11
5
CVSSv2
CVE-2010-1990
Mozilla Firefox 3.6.x, 3.5.x, 3.0.19, and previous versions, and SeaMonkey, executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote malicious users to cause a denial of service (excessive application launches) ...
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.1
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.17
Mozilla Firefox 3.0.16
5
CVSSv2
CVE-2010-0220
The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox prior to 3.5.7 allows remote malicious users to cause a denial of service (application crash) via a crafted web site that triggers memory consumption and an accompanying Low Memory al...
Mozilla Firefox 0.9
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.4
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0.0.8
Mozilla Firefox 3.5.5
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.2
Mozilla Firefox 0.7.1
4.3
CVSSv2
CVE-2010-0648
Mozilla Firefox, possibly prior to 3.6, allows remote malicious users to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.style...
Mozilla Firefox
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.13
Mozilla Firefox 2.0.0.18
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.9
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.11
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0
9.3
CVSSv2
CVE-2010-3765
Mozilla Firefox 3.5.x up to and including 3.5.14 and 3.6.x up to and including 3.6.11, Thunderbird 3.1.6 prior to 3.1.6 and 3.0.x prior to 3.0.10, and SeaMonkey 2.x prior to 2.0.10, when JavaScript is enabled, allows remote malicious users to execute arbitrary code via vectors re...
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.12
Mozilla Firefox 3.5.11
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5.14
Mozilla Firefox 3.5.13
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.2
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.9
4 EDB exploits
1 Article
5.8
CVSSv2
CVE-2008-7293
Mozilla Firefox prior to 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle malicious users to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Tran...
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.10
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.5
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.6
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »