Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 21.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-1671
Mozilla Firefox prior to 21.0 does not properly implement the INPUT element, which allows remote malicious users to obtain the full pathname via a crafted web site.
Mozilla Firefox 19.0
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Firefox 20.0
NA
CVE-2013-1673
The Mozilla Updater in Mozilla Firefox prior to 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versions, which allows local users to gain privileges by leveraging write access to ...
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
NA
CVE-2013-1672
The Mozilla Maintenance Service in Mozilla Firefox prior to 21.0, Firefox ESR 17.x prior to 17.0.6, Thunderbird prior to 17.0.6, and Thunderbird ESR 17.x prior to 17.0.6 on Windows allows local users to bypass integrity verification and gain privileges via vectors involving junct...
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Thunderbird
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird Esr
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
NA
CVE-2015-0819
The UITour::onPageEvent function in Mozilla Firefox prior to 36.0 does not ensure that an API call originates from a foreground tab, which allows remote malicious users to conduct spoofing and clickjacking attacks by leveraging access to a UI Tour web site.
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
NA
CVE-2015-0820
Mozilla Firefox prior to 36.0 does not properly restrict transitions of JavaScript objects from a non-extensible state to an extensible state, which allows remote malicious users to bypass a Caja Compiler sandbox protection mechanism or a Secure EcmaScript sandbox protection mech...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
NA
CVE-2015-0821
Mozilla Firefox prior to 36.0 allows user-assisted remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges via a crafted web site that is accessed with unspecified mouse and keyboard actions.
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
NA
CVE-2015-0824
The mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox prior to 36.0 allows remote malicious users to cause a denial of service (out-of-bounds write of zero values, and application crash) via vectors that trigger use of DrawTarget and the Cairo l...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
NA
CVE-2015-0825
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox prior to 36.0 allows remote malicious users to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during pl...
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
NA
CVE-2015-0826
The nsTransformedTextRun::SetCapitalization function in Mozilla Firefox prior to 36.0 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read of heap memory) via a crafted Cascading Style Sheets (CSS) token sequence that triggers a...
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
NA
CVE-2015-0828
Double free vulnerability in the nsXMLHttpRequest::GetResponse function in Mozilla Firefox prior to 36.0, when a nonstandard memory allocator is used, allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted JavaScr...
Oracle Solaris 11.3
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 26.0
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 15.0.1
Mozilla Firefox 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »