Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla firefox 4.0.1 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2011-2368
The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors....
Mozilla Firefox 4.0Mozilla Firefox 4.0.1
NA
CVE-2011-2598
The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory....
Mozilla Firefox 4.0Mozilla Firefox 4.0.1
NA
CVE-2011-2369
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attackers to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity....
Mozilla Firefox 4.0Mozilla Firefox 4.0.1
NA
CVE-2011-2367
The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict read operations, which allows remote attackers to obtain sensitive information from GPU memory associated with an arbitrary process, or cause a denial of service (application crash), via...
Mozilla Firefox 4.0Mozilla Firefox 4.0.1
NA
CVE-2011-0082
The X.509 certificate validation functionality in Mozilla Firefox 4.0.x through 4.0.1 does not properly implement single-session security exceptions, which might make it easier for user-assisted remote attackers to spoof an SSL server via an untrusted certificate that triggers...
Mozilla Firefox 4.0Mozilla Firefox 4.0.1
NA
CVE-2011-3655
Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site....
Mozilla Firefox 4.0.1Mozilla Firefox 4.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 7.0Mozilla Thunderbird 5.0Mozilla Thunderbird 6.0Mozilla Thunderbird 6.0.1Mozilla Thunderbird 6.0.2Mozilla Thunderbird 7.0
NA
CVE-2012-1965
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not properly establish the security context of a feed: URL, which allows remote attackers to bypass unspecified cross-site scripting (XSS) protection mechanisms via a feed:javascript: URL....
Mozilla Firefox 4.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 9.0Mozilla Firefox 11.0Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.1
NA
CVE-2012-1966
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL....
Mozilla Firefox 4.0Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0Mozilla Firefox 6.0.2Mozilla Firefox 11.0Mozilla Firefox 12.0Mozilla Firefox 6.0.1Mozilla Firefox 7.0.1Mozilla Firefox 13.0Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0Mozilla Firefox Esr 10.0.5
NA
CVE-2012-1950
The drag-and-drop implementation in Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 allows remote attackers to spoof the address bar by canceling a page load....
Mozilla Firefox 4.0Mozilla Firefox 8.0Mozilla Firefox 8.0.1Mozilla Firefox 7.0.1Mozilla Firefox 7.0Mozilla Firefox 12.0Mozilla Firefox 13.0Mozilla Firefox 5.0Mozilla Firefox 5.0.1Mozilla Firefox 6.0Mozilla Firefox 9.0.1Mozilla Firefox 9.0Mozilla Firefox 4.0.1Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 11.0Mozilla Firefox Esr 10.0.1Mozilla Firefox Esr 10.0.5Mozilla Firefox Esr 10.0.2Mozilla Firefox Esr 10.0.3Mozilla Firefox Esr 10.0.4Mozilla Firefox Esr 10.0
NA
CVE-2012-0455
Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict drag-and-drop operations on javascript: URLs, which allows...
Mozilla FirefoxMozilla Firefox 4.0Mozilla Firefox 5.0.1Mozilla Firefox 5.0Mozilla Firefox 8.0.1Mozilla Firefox 9.0.1Mozilla Firefox 4.0.1Mozilla Firefox 7.0Mozilla Firefox 8.0Mozilla Firefox 6.0.2Mozilla Firefox 6.0.1Mozilla Firefox 9.0Mozilla Firefox 6.0Mozilla Firefox 7.0.1Mozilla Firefox Esr 10.2Mozilla Firefox Esr 10.1Mozilla Firefox Esr 10.0Mozilla ThunderbirdMozilla Thunderbird 5.0Mozilla Thunderbird 6.0Mozilla Thunderbird 6.0.1Mozilla Thunderbird 6.0.2Mozilla Thunderbird 8.0Mozilla Thunderbird 9.0.1Mozilla Thunderbird 9.0Mozilla Thunderbird Esr 10.0.1Mozilla Thunderbird Esr 10.0.2Mozilla Thunderbird Esr 10.0Mozilla Seamonkey
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionSSTICVE-2023-28846CVE-2022-47986cache poisoningCVE-2023-23397CVE-2023-28755CVE-2023-25040CVE-2023-1755
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook