Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.4.2 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2009-4102
Sage 1.4.3 and previous versions extension for Firefox performs certain operations with chrome privileges, which allows remote malicious users to execute arbitrary commands and perform cross-domain scripting attacks via the description tag of an RSS feed.
Sage.mozdev Sage 1.3.8
Sage.mozdev Sage
Mozilla Firefox
9.3
CVSSv2
CVE-2008-1195
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and previous versions and 5.0 Update 14 and previous versions; and SDK and JRE 1.4.2_16 and previous versions; allows remote malicious users to access arbitrary network services on the local host v...
Sun Jdk 1.5.0
Sun Jdk 1.6.0
Sun Jre 1.4.2 5
Sun Jre 1.4.2 7
Sun Jre 1.4.2 14
Sun Jre 1.4.2 16
Sun Jre 1.5.0
Sun Jre 1.6.0
Sun Jre 1.4.2
Sun Jre 1.4.2 1
Sun Jre 1.4.2 2
Sun Jre 1.4.2 3
Sun Jre 1.4.2 9
Sun Jre 1.4.2 10
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 4
Sun Jre 1.4.2 6
Sun Jre 1.4.2 8
Sun Jre 1.4.2 13
Sun Jre 1.4.2 15
Sun Sdk 1.4.2 10
7.5
CVSSv2
CVE-2010-1205
Buffer overflow in pngpread.c in libpng prior to 1.2.44 and 1.4.x prior to 1.4.3, as used in progressive applications, might allow remote malicious users to execute arbitrary code via a PNG image that triggers an additional data row.
Libpng Libpng
Google Chrome
Apple Itunes
Apple Safari
Apple Iphone Os
Apple Mac Os X Server
Apple Mac Os X
Fedoraproject Fedora 13
Fedoraproject Fedora 12
Suse Linux Enterprise Server 10
Opensuse Opensuse 11.1
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 9
Opensuse Opensuse 11.2
Vmware Player
Vmware Workstation
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 5.0
1 EDB exploit
7.5
CVSSv2
CVE-2003-0594
Mozilla allows remote malicious users to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Mozilla to send the cookie outside the specified URL subsets, e.g. to a vulnerabl...
Mozilla Mozilla 1.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4.2
Mozilla Mozilla 1.0
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.0.2
7.2
CVSSv2
CVE-2006-3084
The (1) ftpd and (2) ksu programs in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x prior to 1.4.4, and (b) Heimdal 0.7.2 and previous versions, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to fail to drop privileg...
Mit Kerberos 5 1.5
Heimdal Heimdal
Mit Kerberos 5 1.4
Mit Kerberos 5 1.4.1
Mit Kerberos 5 1.4.2
Mit Kerberos 5 1.4.3
6.8
CVSSv2
CVE-2004-0191
Mozilla prior to 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cross-site scripting (XSS) attacks, as demonstrated using onmousemove events.
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.4
Mozilla Mozilla 0.9.4
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.5
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.5
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.35
Mozilla Mozilla 0.9.8
6.4
CVSSv2
CVE-2005-4685
Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by ...
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5
Mozilla Firefox Preview Release
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 0.9.48
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7.11
Mozilla Mozilla 1.7.12
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.9
Mozilla Mozilla 1.7
Mozilla Mozilla 1.8
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.7
Mozilla Mozilla 0.9.35
5.8
CVSSv2
CVE-2009-3555
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and previous versions, OpenSSL prior to 0.9.8l, GnuTLS 2.8.5 and previous versions, Mozilla Network Security Ser...
Openssl Openssl 1.0
Apache Http Server
Openssl Openssl
Gnu Gnutls
Mozilla Nss
Debian Debian Linux 5.0
Canonical Ubuntu Linux 10.10
Fedoraproject Fedora 11
Fedoraproject Fedora 13
Debian Debian Linux 4.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 9.04
Debian Debian Linux 6.0
Fedoraproject Fedora 12
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.10
Fedoraproject Fedora 14
F5 Nginx
2 EDB exploits
10 Github repositories
5.1
CVSSv2
CVE-2009-2409
The Network Security Services (NSS) library prior to 3.12.3, as used in Firefox; GnuTLS prior to 2.6.4 and 2.7.4; OpenSSL 0.9.8 up to and including 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote malicious users to spoof certificates by us...
Mozilla Firefox
Mozilla Nss
Mozilla Nss 3.0
Mozilla Nss 3.2
Mozilla Nss 3.2.1
Mozilla Nss 3.3
Mozilla Nss 3.3.1
Mozilla Nss 3.3.2
Mozilla Nss 3.4
Mozilla Nss 3.4.1
Mozilla Nss 3.4.2
Mozilla Nss 3.4.3
Mozilla Nss 3.5
Mozilla Nss 3.6
Mozilla Nss 3.6.1
Mozilla Nss 3.7
Mozilla Nss 3.7.1
Mozilla Nss 3.7.2
Mozilla Nss 3.7.3
Mozilla Nss 3.7.5
Mozilla Nss 3.7.7
Mozilla Nss 3.8
5.1
CVSSv2
CVE-2004-0909
Mozilla Firefox before the Preview Release, Mozilla prior to 1.7.3, and Thunderbird prior to 0.8 may allow remote malicious users to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enableP...
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.7
Mozilla Mozilla 0.9.8
Mozilla Mozilla 1.1
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 0.9.48
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.0
Mozilla Mozilla 1.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.5
Mozilla Mozilla 0.9.6
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »