Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 24.1.1 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-1560
Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 allow remote malicious users to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use ASCII character encoding in a required context.
Mozilla Thunderbird
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.2
Mozilla Firefox
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.6
445
VMScore
CVE-2014-1539
Mozilla Firefox prior to 30.0 and Thunderbird up to and including 24.6 on OS X do not ensure visibility of the cursor after interaction with a Flash object and a DIV element, which makes it easier for remote malicious users to conduct clickjacking attacks via JavaScript code that...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
445
VMScore
CVE-2014-1527
Mozilla Firefox prior to 29.0 on Android allows remote malicious users to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scrolling has taken it off of the screen.
Fedoraproject Fedora 19
Mozilla Firefox
Mozilla Firefox 0.1
Mozilla Firefox 0.2
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.6
Mozilla Firefox 0.6.1
Mozilla Firefox 0.7
Mozilla Firefox 0.7.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
516
VMScore
CVE-2014-1501
Mozilla Firefox prior to 28.0 on Android allows remote malicious users to bypass the Same Origin Policy and access arbitrary file: URLs via vectors involving the "Open Link in New Tab" menu selection.
Oracle Solaris 11.3
Mozilla Firefox
Mozilla Firefox 0.1
Mozilla Firefox 0.2
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.6
Mozilla Firefox 0.6.1
Mozilla Firefox 0.7
Mozilla Firefox 0.7.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
570
VMScore
CVE-2014-1506
Directory traversal vulnerability in Android Crash Reporter in Mozilla Firefox prior to 28.0 on Android allows malicious users to trigger the transmission of local files to arbitrary servers, or cause a denial of service (application crash), via a crafted application that specifi...
Mozilla Firefox
Mozilla Firefox 0.1
Mozilla Firefox 0.2
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.6
Mozilla Firefox 0.6.1
Mozilla Firefox 0.7
Mozilla Firefox 0.7.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
445
VMScore
CVE-2014-1484
Mozilla Firefox prior to 27.0 on Android 4.2 and previous versions creates system-log entries containing profile paths, which allows malicious users to obtain sensitive information via a crafted application.
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Mozilla Firefox
Mozilla Firefox 0.1
Mozilla Firefox 0.2
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.5
Mozilla Firefox 0.6
Mozilla Firefox 0.6.1
Mozilla Firefox 0.7
Mozilla Firefox 0.7.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
383
VMScore
CVE-2014-1489
Mozilla Firefox prior to 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote malicious users to cause a denial of service (session restore) via a crafted web site.
Oracle Solaris 11.3
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.5.18
Mozilla Firefox 1.5
Mozilla Firefox 3.6.28
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 18.0.2
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
516
VMScore
CVE-2013-5611
Mozilla Firefox prior to 26.0 does not properly remove the Application Installation doorhanger, which makes it easier for remote malicious users to spoof a Web App installation site by controlling the timing of page navigation.
Oracle Solaris 11.3
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Opensuse Project Opensuse 12.3
Opensuse Project Opensuse 11.4
Opensuse Opensuse 13.1
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 18.0
Mozilla Firefox 0.1
Mozilla Firefox 10.0.7
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 19.0
Mozilla Firefox 0.8
668
VMScore
CVE-2013-5607
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) prior to 4.10.2, as used in Firefox prior to 25.0.1, Firefox ESR 17.x prior to 17.0.11 and 24.x prior to 24.1.1, and SeaMonkey prior to 2.22.1, allows remote malicious users to cause a d...
Mozilla Netscape Portable Runtime 4.2
Mozilla Netscape Portable Runtime 4.6
Mozilla Netscape Portable Runtime 4.6.4
Mozilla Netscape Portable Runtime 4.8.8
Mozilla Netscape Portable Runtime 4.6.8
Mozilla Netscape Portable Runtime 4.7.6
Mozilla Netscape Portable Runtime 4.10
Mozilla Netscape Portable Runtime 4.9.4
Mozilla Netscape Portable Runtime 4.3
Mozilla Netscape Portable Runtime 4.7.5
Mozilla Netscape Portable Runtime 4.7.2
Mozilla Netscape Portable Runtime 4.8.5
Mozilla Netscape Portable Runtime 4.6.5
Mozilla Netscape Portable Runtime 4.7.3
Mozilla Netscape Portable Runtime 4.6.2
Mozilla Netscape Portable Runtime 4.8.6
Mozilla Netscape Portable Runtime 4.6.7
Mozilla Netscape Portable Runtime 4.4.1
Mozilla Netscape Portable Runtime 4.2.2
Mozilla Netscape Portable Runtime 4.7
Mozilla Netscape Portable Runtime 4.9.6
Mozilla Netscape Portable Runtime 4.1.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4