Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.6 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-5017
Mozilla Firefox prior to 3.6 Beta 3 does not properly handle overlong UTF-8 encoding, which makes it easier for remote malicious users to bypass cross-site scripting (XSS) protection mechanisms via a crafted string, a different vulnerability than CVE-2010-1210.
Mozilla Firefox
Mozilla Firefox 3.6
9.3
CVSSv2
CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 prior to 3.6.2 and 3.7 prior to 3.7 alpha 3 allows remote malicious users to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as d...
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6
Mozilla Firefox 3.7
10
CVSSv2
CVE-2010-1121
Mozilla Firefox 3.6.x prior to 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote malicious users to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interacti...
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6
9.3
CVSSv2
CVE-2010-1203
The JavaScript engine in Mozilla Firefox 3.6.x prior to 3.6.4 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
7.6
CVSSv2
CVE-2010-0168
The nsDocument::MaybePreLoadImage function in content/base/src/nsDocument.cpp in the image-preloading implementation in Mozilla Firefox 3.6 prior to 3.6.2 does not apply scheme restrictions and policy restrictions to the image's URL, which might allow remote malicious users ...
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6
1 EDB exploit
4.3
CVSSv2
CVE-2010-1207
Mozilla Firefox prior to 3.6.7 and Thunderbird prior to 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote malicious users to obtain sensitive cross-origin information via vectors involving reference retention and node deletion.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.4
Mozilla Firefox
Mozilla Firefox 3.6.3
Mozilla Thunderbird
4.3
CVSSv2
CVE-2009-3010
Mozilla Firefox 3.0.13 and previous versions, 3.5, 3.6 a1 pre, and 3.7 a1 pre; SeaMonkey 1.1.17; and Mozilla 1.7.x and previous versions do not properly block data: URIs in Refresh headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS...
Mozilla Seamonkey 1.1.17
Mozilla Firefox 3.5
Mozilla Firefox
Mozilla Mozilla
Mozilla Firefox 3.7
Mozilla Firefox 3.6
5.1
CVSSv2
CVE-2010-0166
The gfxTextRun::SanitizeGlyphRuns function in gfx/thebes/src/gfxFont.cpp in the browser engine in Mozilla Firefox 3.6 prior to 3.6.2 on Mac OS X, when the Core Text API is used, does not properly perform certain deletions, which allows remote malicious users to cause a denial of ...
Mozilla Firefox 3.6
1 EDB exploit
4.3
CVSSv2
CVE-2010-0170
Mozilla Firefox 3.6 prior to 3.6.2 does not offer plugins the expected window.location protection mechanism, which might allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors that are specific to each affected plu...
Mozilla Firefox 3.6
4.3
CVSSv2
CVE-2010-0172
toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the asynchronous Authorization Prompt implementation in Mozilla Firefox 3.6 prior to 3.6.2 does not properly handle concurrent authorization requests from multiple web sites, which might allow remote web servers to s...
Mozilla Firefox 3.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »