Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 3.6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0172
toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the asynchronous Authorization Prompt implementation in Mozilla Firefox 3.6 prior to 3.6.2 does not properly handle concurrent authorization requests from multiple web sites, which might allow remote web servers to s...
Mozilla Firefox 3.6
NA
CVE-2010-0170
Mozilla Firefox 3.6 prior to 3.6.2 does not offer plugins the expected window.location protection mechanism, which might allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors that are specific to each affected plu...
Mozilla Firefox 3.6
NA
CVE-2010-2117
Mozilla Firefox 3.0.19, 3.5.x, and 3.6.x allows remote malicious users to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.0.19
Mozilla Firefox 3.5
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.9
NA
CVE-2010-2762
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) implementation in Mozilla Firefox 3.6.x prior to 3.6.9 and Thunderbird 3.1.x prior to 3.1.3 does not properly restrict objects at the end of scope chains, which allows remote malicious users to execute arbitra...
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6
Mozilla Thunderbird 3.1.2
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.1
NA
CVE-2009-3012
Mozilla Firefox 3.0.13 and previous versions, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Locatio...
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.9
Mozilla Firefox 3.5
Mozilla Firefox 3.7
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.5
Mozilla Firefox
Mozilla Firefox 3.6
NA
CVE-2010-3175
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x prior to 3.6.11 and Thunderbird 3.1.x prior to 3.1.5 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unkn...
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Thunderbird 3.1.3
Mozilla Thunderbird 3.1.4
Mozilla Thunderbird 3.1.2
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.1
NA
CVE-2011-2996
Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x prior to 3.6.23 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.18
NA
CVE-2011-2998
Integer underflow in Mozilla Firefox 3.6.x prior to 3.6.23 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.22
NA
CVE-2011-3666
Mozilla Firefox prior to 3.6.25 and Thunderbird prior to 3.1.17 on Mac OS X do not consider .jar files to be executable files, which allows user-assisted remote malicious users to bypass intended access restrictions via a crafted file. NOTE: this vulnerability exists because of a...
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6
Mozilla Firefox
Mozilla Firefox 3.6.23
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.15
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5.15
Mozilla Firefox 3.5.14
Mozilla Firefox 3.0.8
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.16
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0
Mozilla Firefox 3.6.3
Mozilla Firefox 2.0.0.19
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.7
NA
CVE-2010-3777
Unspecified vulnerability in Mozilla Firefox 3.6.x prior to 3.6.13 and Thunderbird 3.1.x prior to 3.1.7 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.2
Mozilla Thunderbird 3.1.5
Mozilla Thunderbird 3.1.6
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.1.3
Mozilla Thunderbird 3.1.4
Mozilla Thunderbird 3.1.1
Mozilla Thunderbird 3.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »