Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.0 vulnerabilities and exploits
(subscribe to this query)
231
VMScore
CVE-2005-1576
The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote malicious users to hide the real file types of...
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
620
VMScore
CVE-2006-0298
The XML parser in Mozilla Firefox prior to 1.5.0.1 and SeaMonkey prior to 1.0 allows remote malicious users to cause a denial of service (crash) and possibly read sensitive data via unknown attack vectors that trigger an out-of-bounds read.
Mozilla Seamonkey 1.0
Mozilla Firefox 1.5
668
VMScore
CVE-2005-1153
Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7, when blocking a popup, allows remote malicious users to execute arbitrary code via a javascript: URL that is executed when the user selects the "Show javascript" option.
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Mozilla 1.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.5
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.4.1
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
668
VMScore
CVE-2005-1154
Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 allows remote malicious users to execute arbitrary script in other domains via a setter function for a variable in the target domain, which is executed when the user visits that domain, aka "Cross-site scripting through...
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.7.5
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Mozilla 1.3
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
668
VMScore
CVE-2005-1155
The favicon functionality in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 allows remote malicious users to execute arbitrary code via a <LINK rel="icon"> tag with a javascript: URL in the href attribute, aka "Firelinking."
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 0.9
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.7.5
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7
Mozilla Firefox 0.9.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
668
VMScore
CVE-2005-1159
The native implementations of InstallTrigger and other functions in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which...
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Mozilla 1.4
Mozilla Mozilla 1.5
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.7.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
454
VMScore
CVE-2005-1160
The privileged "chrome" UI code in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 allows remote malicious users to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or th...
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.6
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.7.1
231
VMScore
CVE-2004-1451
Mozilla prior to 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote malicious users to trick users into clicking on unknown or untrusted sites and facilitate phishing attacks.
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.5
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 1.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.4
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.4
Mozilla Mozilla 0.9.9
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4.4
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 0.9.35
570
VMScore
CVE-2005-4685
Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by ...
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5
Mozilla Firefox Preview Release
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 0.9.48
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.2
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7.11
Mozilla Mozilla 1.7.12
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.9
Mozilla Mozilla 1.7
Mozilla Mozilla 1.8
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.7
Mozilla Mozilla 0.9.35
668
VMScore
CVE-2005-2261
Firefox prior to 1.0.5, Thunderbird prior to 1.0.5, Mozilla prior to 1.7.9, Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has been disabled, which makes it easier for remote malicious users to bypass such protection.
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.0.2
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.6
Mozilla Mozilla 1.7.7
Mozilla Thunderbird 0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »