Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.5.11 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2010-3399
The js_InitRandom function in the JavaScript implementation in Mozilla Firefox 3.5.10 up to and including 3.5.11, 3.6.4 up to and including 3.6.8, and 4.0 Beta1 uses a context pointer in conjunction with its successor pointer for seeding of a random number generator, which makes ...
Mozilla Firefox 4.0
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.11
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.4
5.8
CVSSv2
CVE-2010-3171
The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.10 up to and including 3.5.11, 3.6.4 up to and including 3.6.8, and 4.0 Beta1 uses a random number generator that is seeded only once per document object, which makes it easier for remote malicious u...
Mozilla Firefox 3.6.4
Mozilla Firefox 4.0
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.6
Mozilla Firefox 3.5.11
Mozilla Firefox 3.6.8
Mozilla Firefox 3.5.10
1 EDB exploit
9.3
CVSSv2
CVE-2010-3765
Mozilla Firefox 3.5.x up to and including 3.5.14 and 3.6.x up to and including 3.6.11, Thunderbird 3.1.6 prior to 3.1.6 and 3.0.x prior to 3.0.10, and SeaMonkey 2.x prior to 2.0.10, when JavaScript is enabled, allows remote malicious users to execute arbitrary code via vectors re...
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.12
Mozilla Firefox 3.5.11
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5.14
Mozilla Firefox 3.5.13
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.2
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.9
4 EDB exploits
1 Article
5.8
CVSSv2
CVE-2008-7293
Mozilla Firefox prior to 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle malicious users to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Tran...
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.10
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.5
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.6
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0
5
CVSSv2
CVE-2011-2370
Mozilla Firefox prior to 5.0 does not properly enforce the whitelist for the xpinstall functionality, which allows remote malicious users to trigger an installation dialog for a (1) add-on or (2) theme via unspecified vectors.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.9
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.18
Mozilla Firefox 2.0.0.6
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5
Mozilla Firefox 1.5.8
Mozilla Firefox 1.0.2
7.6
CVSSv2
CVE-2012-3973
The debugger in the developer-tools subsystem in Mozilla Firefox prior to 15.0, when remote debugging is disabled, does not properly restrict access to the remote-debugging service, which allows remote malicious users to execute arbitrary code by leveraging the presence of the HT...
Mozilla Firefox 12.0
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox 5.0
Mozilla Firefox 13.0
Mozilla Firefox
Mozilla Firefox 9.0.1
Mozilla Firefox 9.0
Mozilla Firefox 6.0
Mozilla Firefox 5.0.1
Mozilla Firefox 4.0
Mozilla Firefox 3.0.1
Mozilla Firefox 3.6.25
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.19
Mozilla Firefox 3.0.7
Mozilla Firefox 3.5.8
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0.2
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.2
Mozilla Firefox 3.0.11
9.3
CVSSv2
CVE-2012-3965
Mozilla Firefox prior to 15.0 does not properly restrict navigation to the about:newtab page, which allows remote malicious users to execute arbitrary JavaScript code with chrome privileges via a crafted web site that triggers creation of a new tab and then a new window.
Mozilla Firefox 11.0
Mozilla Firefox 10.0.2
Mozilla Firefox 7.0.1
Mozilla Firefox 7.0
Mozilla Firefox 4.0
Mozilla Firefox 3.0.5
Mozilla Firefox 3.6.23
Mozilla Firefox 3.6.6
Mozilla Firefox 3.0.17
Mozilla Firefox 3.6.17
Mozilla Firefox 3.0.9
Mozilla Firefox 3.6.20
Mozilla Firefox 3.5.10
Mozilla Firefox 3.0.3
Mozilla Firefox 3.5.13
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.14
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.6
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.10
6.8
CVSSv2
CVE-2012-4203
The New Tab page in Mozilla Firefox prior to 17.0 uses a privileged context for execution of JavaScript code by bookmarklets, which allows user-assisted remote malicious users to run arbitrary programs by leveraging a javascript: URL in a bookmark.
Mozilla Firefox
Mozilla Firefox 16.0.1
Mozilla Firefox 13.0.1
Mozilla Firefox 12.0
Mozilla Firefox 9.0
Mozilla Firefox 8.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 4.0
Mozilla Firefox 3.6.4
Mozilla Firefox 3.5.10
Mozilla Firefox 3.6.24
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.23
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.14
Mozilla Firefox 3.0.10
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.9
6.8
CVSSv2
CVE-2012-5837
The Web Developer Toolbar in Mozilla Firefox prior to 17.0 executes script with chrome privileges, which allows user-assisted remote malicious users to conduct cross-site scripting (XSS) attacks via a crafted string.
Mozilla Firefox 14.0.1
Mozilla Firefox 14.0
Mozilla Firefox 10.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox
Mozilla Firefox 13.0
Mozilla Firefox 13.0.1
Mozilla Firefox 12.0
Mozilla Firefox 9.0
Mozilla Firefox 8.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 4.0
Mozilla Firefox 3.6.4
Mozilla Firefox 3.5.10
Mozilla Firefox 3.6.25
Mozilla Firefox 3.6.24
Mozilla Firefox 3.6.23
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.7
7.2
CVSSv2
CVE-2011-2980
Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox prior to 3.6.20, Thunderbird 3.x prior to 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded...
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.2
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.6
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.6
Mozilla Firefox 3.5.15
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »