Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox esr 10.0.5 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2012-1939
jsinfer.cpp in Mozilla Firefox ESR 10.x prior to 10.0.5 and Thunderbird ESR 10.x prior to 10.0.5 does not properly determine data types, which allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...
Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Thunderbird Esr 10.0.3Mozilla Thunderbird Esr 10.0.4Mozilla Thunderbird Esr 10.0Mozilla Thunderbird Esr 10.0.1Mozilla Thunderbird Esr 10.0.2
NA
CVE-2012-1950
The drag-and-drop implementation in Mozilla Firefox 4.x up to and including 13.0 and Firefox ESR 10.x prior to 10.0.6 allows remote malicious users to spoof the address bar by canceling a page load.
Mozilla Firefox 4.0Mozilla Firefox 8.0Mozilla Firefox 8.0.1Mozilla Firefox 7.0.1Mozilla Firefox 7.0Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 6.0Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 11.0Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0
NA
CVE-2012-1965
Mozilla Firefox 4.x up to and including 13.0 and Firefox ESR 10.x prior to 10.0.6 do not properly establish the security context of a feed: URL, which allows remote malicious users to bypass unspecified cross-site scripting (XSS) protection mechanisms via a feed:javascript: URL.
Mozilla Firefox 4.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 9.0Mozilla Firefox 11.0Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.1
NA
CVE-2012-1966
Mozilla Firefox 4.x up to and including 13.0 and Firefox ESR 10.x prior to 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a crafted URL.
Mozilla Firefox 4.0Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 11.0Mozilla Firefox 12.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 13.0Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5
NA
CVE-2012-3105
The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey prior to 2.10 does not properly mitigate an unspe...
Mozilla Firefox 4.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 10.0.2Mozilla Firefox 10.0Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Thunderbird 8.0Mozilla Thunderbird 9.0.1Mozilla Thunderbird 11.0Mozilla Thunderbird 12.0Mozilla Seamonkey 2.9Mozilla Seamonkey 2.8Mozilla Seamonkey 2.7.1Mozilla Seamonkey 2.7Mozilla Seamonkey 2.6Mozilla Seamonkey 2.5Mozilla Seamonkey 2.3.3Mozilla Seamonkey 2.3Mozilla Seamonkey 2.2Mozilla Seamonkey 2.1
NA
CVE-2012-1951
Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased function in Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 allows rem...
Mozilla Firefox 4.0.1Mozilla Firefox 4.0Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 11.0Mozilla Firefox 12.0Mozilla Firefox 5.0.1Mozilla Firefox 6.0Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox 7.0.1Mozilla Firefox 7.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 8.0Mozilla Firefox 8.0.1Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2
NA
CVE-2012-1952
The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 does not properly perform a cast of a frame varia...
Mozilla Firefox 4.0Mozilla Firefox 7.0.1Mozilla Firefox 7.0Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 11.0Mozilla Firefox 5.0Mozilla Firefox 8.0Mozilla Firefox 8.0.1Mozilla Firefox 5.0.1Mozilla Firefox 6.0Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3
NA
CVE-2012-1953
The ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 allows remote malicious users to cause...
Mozilla Firefox 4.0Mozilla Firefox 8.0Mozilla Firefox 8.0.1Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 11.0Mozilla Firefox 12.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 7.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3
NA
CVE-2012-1954
Use-after-free vulnerability in the nsDocument::AdoptNode function in Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 allows remote maliciou...
Mozilla Firefox 4.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 9.0Mozilla Firefox 11.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0
NA
CVE-2012-1955
Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 allow remote malicious users to spoof the address bar via vectors involving history.forward ...
Mozilla Firefox 4.0Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox 13.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 9.0Mozilla Firefox 11.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 12.0Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook