Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.7.8 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3808
Mozilla Firefox prior to 1.5.0.5 and SeaMonkey prior to 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function to an eval method on a privileged object.
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Firefox 1.5.0.4
Mozilla Seamonkey 1.0
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
NA
CVE-2006-3809
Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
Mozilla Seamonkey 1.0.2
NA
CVE-2006-3810
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 allows remote malicious users to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct.
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Seamonkey 1.0
Mozilla Thunderbird 1.5
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 1.5.0.2
Mozilla Thunderbird 1.5.0.4
NA
CVE-2006-3806
Multiple integer overflows in the Javascript engine in Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 might allow remote malicious users to execute arbitrary code via vectors involving (1) long strings in the toSource method of the Ob...
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Seamonkey 1.0
Mozilla Thunderbird 1.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 1.5.0.2
Mozilla Thunderbird 1.5.0.4
NA
CVE-2006-3807
Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 allows remote malicious users to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and calling "named Java...
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
NA
CVE-2006-2788
Double free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote malicious users to cause a denial of service (hang) and possibly execute arbitrary code via certain Javascript code.
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Firefox 0.10
Mozilla Firefox 0.9
Mozilla Firefox 1.0
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.5
Mozilla Firefox Preview Release
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
NA
CVE-2006-2786
HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird prior to 1.5.0.4, when used with certain proxy servers, allows remote malicious users to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP r...
Mozilla Thunderbird
Mozilla Firefox
NA
CVE-2006-2787
EvalInSandbox in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to gain privileges via javascript that calls the valueOf method on objects that were created outside of the sandbox.
Mozilla Firefox 1.0
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Thunderbird 1.0
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.0.7
Mozilla Thunderbird 1.5
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox Preview Release
Mozilla Thunderbird 1.0.6
NA
CVE-2006-2779
Mozilla Firefox and Thunderbird prior to 1.5.0.4 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views...
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5
Mozilla Firefox Preview Release
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0
Mozilla Thunderbird 1.5.1
Mozilla Thunderbird 1.5.2
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 0.6
Mozilla Thunderbird 0.7
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.5
Mozilla Thunderbird 1.5
Mozilla Firefox 0.9.1
NA
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »