Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.6 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-0170
Mozilla Firefox 3.6 prior to 3.6.2 does not offer plugins the expected window.location protection mechanism, which might allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors that are specific to each affected plu...
Mozilla Firefox 3.6
4.3
CVSSv2
CVE-2010-0172
toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the asynchronous Authorization Prompt implementation in Mozilla Firefox 3.6 prior to 3.6.2 does not properly handle concurrent authorization requests from multiple web sites, which might allow remote web servers to s...
Mozilla Firefox 3.6
4.3
CVSSv2
CVE-2010-2117
Mozilla Firefox 3.0.19, 3.5.x, and 3.6.x allows remote malicious users to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.0.19
Mozilla Firefox 3.5
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.9
6.8
CVSSv2
CVE-2010-2762
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) implementation in Mozilla Firefox 3.6.x prior to 3.6.9 and Thunderbird 3.1.x prior to 3.1.3 does not properly restrict objects at the end of scope chains, which allows remote malicious users to execute arbitra...
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6
Mozilla Thunderbird 3.1.2
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.1
4.3
CVSSv2
CVE-2009-3012
Mozilla Firefox 3.0.13 and previous versions, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Locatio...
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.9
Mozilla Firefox 3.5
Mozilla Firefox 3.7
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.5
Mozilla Firefox
Mozilla Firefox 3.6
9.3
CVSSv2
CVE-2010-3175
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x prior to 3.6.11 and Thunderbird 3.1.x prior to 3.1.5 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unkn...
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Thunderbird 3.1.3
Mozilla Thunderbird 3.1.4
Mozilla Thunderbird 3.1.2
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.1
10
CVSSv2
CVE-2011-2998
Integer underflow in Mozilla Firefox 3.6.x prior to 3.6.23 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.22
10
CVSSv2
CVE-2011-2996
Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x prior to 3.6.23 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.18
6.8
CVSSv2
CVE-2011-3666
Mozilla Firefox prior to 3.6.25 and Thunderbird prior to 3.1.17 on Mac OS X do not consider .jar files to be executable files, which allows user-assisted remote malicious users to bypass intended access restrictions via a crafted file. NOTE: this vulnerability exists because of a...
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6
Mozilla Firefox
Mozilla Firefox 3.6.23
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.15
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5.15
Mozilla Firefox 3.5.14
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0
Mozilla Firefox 3.6.3
Mozilla Firefox 2.0.0.19
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.7
9.3
CVSSv2
CVE-2010-3777
Unspecified vulnerability in Mozilla Firefox 3.6.x prior to 3.6.13 and Thunderbird 3.1.x prior to 3.1.7 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.2
Mozilla Thunderbird 3.1.5
Mozilla Thunderbird 3.1.6
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.3
Mozilla Thunderbird 3.1.4
Mozilla Thunderbird 3.1.1
Mozilla Thunderbird 3.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »