Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.4 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2009-1194
Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango prior to 1.24 allows context-dependent malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-bas...
Pango Pango 1.6
Pango Pango 1.14
Pango Pango 1.16
Pango Pango 1.8
Pango Pango 1.4
Pango Pango
Pango Pango 1.10
Pango Pango 1.2
Pango Pango 1.18
Pango Pango 1.12
Pango Pango 1.20
3 Github repositories
6.8
CVSSv2
CVE-2004-0191
Mozilla prior to 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cross-site scripting (XSS) attacks, as demonstrated using onmousemove events.
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.4
Mozilla Mozilla 0.9.4
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.5
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.5
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.35
Mozilla Mozilla 0.9.8
6.4
CVSSv2
CVE-2005-4685
Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by ...
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5
Mozilla Firefox Preview Release
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 0.9.48
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7.11
Mozilla Mozilla 1.7.12
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.9
Mozilla Mozilla 1.7
Mozilla Mozilla 1.8
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.7
Mozilla Mozilla 0.9.35
5.1
CVSSv2
CVE-2005-0399
Heap-based buffer overflow in GIF2.cpp in Firefox prior to 1.0.2, Mozilla before to 1.7.6, and Thunderbird prior to 1.0.2, and possibly other applications that use the same library, allows remote malicious users to execute arbitrary code via a GIF image with a crafted Netscape ex...
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 0.7.2
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.3
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.5
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0
Mozilla Firefox 0.10
Mozilla Firefox 0.9
Mozilla Firefox 1.0
5.1
CVSSv2
CVE-2005-0401
FireFox 1.0.1 and Mozilla prior to 1.7.6 do not sufficiently address all attack vectors for loading chrome files and hijacking drag and drop events, which allows remote malicious users to execute arbitrary XUL code by tricking a user into dragging a scrollbar, a variant of CVE-20...
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
Mozilla Firefox 0.8
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Mozilla 1.3
Mozilla Mozilla 1.7.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7.1
5.1
CVSSv2
CVE-2005-1160
The privileged "chrome" UI code in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 allows remote malicious users to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or th...
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.7.1
5.1
CVSSv2
CVE-2004-0909
Mozilla Firefox before the Preview Release, Mozilla prior to 1.7.3, and Thunderbird prior to 0.8 may allow remote malicious users to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enableP...
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.7
Mozilla Mozilla 0.9.8
Mozilla Mozilla 1.1
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 0.9.48
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.0
Mozilla Mozilla 1.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.5
Mozilla Mozilla 0.9.6
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
5
CVSSv2
CVE-2005-2263
The InstallTrigger.install method in Firefox prior to 1.0.5 and Mozilla prior to 1.7.9 allows remote malicious users to execute a callback function in the context of another domain by forcing a page navigation after the install method has been called, which causes the callback to...
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Mozilla 1.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
5
CVSSv2
CVE-2005-2265
Firefox prior to 1.0.5, Mozilla prior to 1.7.9, and Netscape 8.0.2 and 7.2 allows remote malicious users to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.7
Mozilla Mozilla 1.7.8
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
2 EDB exploits
5
CVSSv2
CVE-2005-2266
Firefox prior to 1.0.5 and Mozilla prior to 1.7.9 allows a child frame to call top.focus and other methods in a parent frame, even when the parent is in a different domain, which violates the same origin policy and allows remote malicious users to steal sensitive information such...
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Mozilla 1.3
Mozilla Mozilla 1.4
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »