Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 3.6.4 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2010-1207
Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote attackers to obtain sensitive cross-origin information via vectors involving reference retention and node deletion....
Mozilla Firefox 3.6Mozilla Firefox 3.6.2Mozilla Firefox 3.6.4Mozilla FirefoxMozilla Firefox 3.6.3Mozilla Thunderbird
NA
CVE-2010-1215
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper (aka SJOW) wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging...
Mozilla Firefox 3.6.1Mozilla Firefox 3.6.2Mozilla Firefox 3.6.6Mozilla Firefox 3.6.3Mozilla Firefox 3.6.4Mozilla Thunderbird 3.1
NA
CVE-2010-3171
The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.10 through 3.5.11, 3.6.4 through 3.6.8, and 4.0 Beta1 uses a random number generator that is seeded only once per document object, which makes it easier for remote attackers to track a user, or...
Mozilla Firefox 3.6.4Mozilla Firefox 4.0Mozilla Firefox 3.6.7Mozilla Firefox 3.6.6Mozilla Firefox 3.5.11Mozilla Firefox 3.6.8Mozilla Firefox 3.5.10
NA
CVE-2010-1212
js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1)...
Mozilla Firefox 3.6.1Mozilla Firefox 3.6.4Mozilla Firefox 3.6.6Mozilla Firefox 3.6.2Mozilla Firefox 3.6.3Mozilla Thunderbird 3.1
NA
CVE-2010-3399
The js_InitRandom function in the JavaScript implementation in Mozilla Firefox 3.5.10 through 3.5.11, 3.6.4 through 3.6.8, and 4.0 Beta1 uses a context pointer in conjunction with its successor pointer for seeding of a random number generator, which makes it easier for remote...
Mozilla Firefox 4.0Mozilla Firefox 3.6.8Mozilla Firefox 3.6.7Mozilla Firefox 3.5.10Mozilla Firefox 3.5.11Mozilla Firefox 3.6.6Mozilla Firefox 3.6.4
NA
CVE-2010-2762
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) implementation in Mozilla Firefox 3.6.x before 3.6.9 and Thunderbird 3.1.x before 3.1.3 does not properly restrict objects at the end of scope chains, which allows remote attackers to execute arbitrary...
Mozilla Firefox 3.6.3Mozilla Firefox 3.6.4Mozilla Firefox 3.6.6Mozilla Firefox 3.6.8Mozilla Firefox 3.6.7Mozilla Firefox 3.6.2Mozilla Firefox 3.6Mozilla Thunderbird 3.1.2Mozilla Thunderbird 3.1Mozilla Thunderbird 3.1.1
NA
CVE-2011-2996
Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors....
Mozilla Firefox 3.6Mozilla Firefox 3.6.2Mozilla Firefox 3.6.11Mozilla Firefox 3.6.12Mozilla Firefox 3.6.19Mozilla Firefox 3.6.20Mozilla Firefox 3.6.6Mozilla Firefox 3.6.7Mozilla Firefox 3.6.8Mozilla Firefox 3.6.15Mozilla Firefox 3.6.16Mozilla Firefox 3.6.3Mozilla Firefox 3.6.4Mozilla Firefox 3.6.13Mozilla Firefox 3.6.14Mozilla Firefox 3.6.21Mozilla Firefox 3.6.22Mozilla Firefox 3.6.9Mozilla Firefox 3.6.10Mozilla Firefox 3.6.17Mozilla Firefox 3.6.18
NA
CVE-2010-3175
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x before 3.6.11 and Thunderbird 3.1.x before 3.1.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown...
Mozilla Firefox 3.6.6Mozilla Firefox 3.6.7Mozilla Firefox 3.6.2Mozilla Firefox 3.6.3Mozilla Firefox 3.6.4Mozilla Firefox 3.6.10Mozilla Firefox 3.6.9Mozilla Firefox 3.6Mozilla Firefox 3.6.8Mozilla Thunderbird 3.1.3Mozilla Thunderbird 3.1.4Mozilla Thunderbird 3.1.2Mozilla Thunderbird 3.1Mozilla Thunderbird 3.1.1
NA
CVE-2011-2998
Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression....
Mozilla Firefox 3.6Mozilla Firefox 3.6.10Mozilla Firefox 3.6.11Mozilla Firefox 3.6.18Mozilla Firefox 3.6.19Mozilla Firefox 3.6.8Mozilla Firefox 3.6.9Mozilla Firefox 3.6.16Mozilla Firefox 3.6.17Mozilla Firefox 3.6.2Mozilla Firefox 3.6.3Mozilla Firefox 3.6.4Mozilla Firefox 3.6.12Mozilla Firefox 3.6.13Mozilla Firefox 3.6.20Mozilla Firefox 3.6.21Mozilla Firefox 3.6.6Mozilla Firefox 3.6.7Mozilla Firefox 3.6.14Mozilla Firefox 3.6.15Mozilla Firefox 3.6.22
NA
CVE-2010-3777
Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and Thunderbird 3.1.x before 3.1.7 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors....
Mozilla Firefox 3.6.8Mozilla Firefox 3.6.7Mozilla Firefox 3.6Mozilla Firefox 3.6.10Mozilla Firefox 3.6.6Mozilla Firefox 3.6.4Mozilla Firefox 3.6.9Mozilla Firefox 3.6.12Mozilla Firefox 3.6.11Mozilla Firefox 3.6.1Mozilla Firefox 3.6.3Mozilla Firefox 3.6.2Mozilla Thunderbird 3.1.5Mozilla Thunderbird 3.1.6Mozilla Thunderbird 3.1Mozilla Thunderbird 3.1.3Mozilla Thunderbird 3.1.4Mozilla Thunderbird 3.1.1Mozilla Thunderbird 3.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-26498open redirectCVE-2023-22261CVE-2023-1410path traversalCVE-2023-28759cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook