Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

billy rios vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3
CVE-2008-2934
Mozilla Firefox 3 prior to 3.0.1 on Mac OS X allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF file that triggers a free of an uninitialized pointer.
Apple Mac Os XCanonical Ubuntu Linux 8.04
NA
CVE-2008-2933
Mozilla Firefox prior to 2.0.0.16, and 3.x prior to 3.0.1, interprets '|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote malicious users to access chrome:i URIs, or read arbitrary local files via manipulations involving a ...
Mozilla Firefox 0.10.1Mozilla Firefox 0.8Mozilla Firefox 1.0.2Mozilla Firefox 1.0.3Mozilla Firefox 1.0.4Mozilla Firefox 1.5.0.10Mozilla Firefox 1.5.0.11Mozilla Firefox 1.5.0.7Mozilla Firefox 1.5.0.8Mozilla Firefox 1.5.6Mozilla Firefox 1.5.7Mozilla Firefox 1.5.8Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.14Mozilla Firefox 2.0.0.8Mozilla Firefox 2.0.0.9Mozilla Firefox 2.0 8Mozilla Firefox 3.0Mozilla Firefox 0.9.2Mozilla Firefox 0.9.3Mozilla Firefox 1.0.7Mozilla Firefox 1.0.8
NA
CVE-2008-2785
Mozilla Firefox prior to 2.0.0.16 and 3.x prior to 3.0.1, Thunderbird prior to 2.0.0.16, and SeaMonkey prior to 1.1.11 use an incorrect integer data type as a CSS object reference counter in the CSSValue array (aka nsCSSValue:Array) data structure, which allows remote malicious u...
Mozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.5Mozilla Firefox 2.0.0.6Mozilla Thunderbird 2.0.0.9Mozilla Thunderbird 2.0.0.6Mozilla Thunderbird 1.5.0.10Mozilla Thunderbird 1.5.0.9Mozilla Thunderbird 1.0.7Mozilla Thunderbird 1.0.6Mozilla Thunderbird 0.6Mozilla Thunderbird 0.5Mozilla Seamonkey 1.0.9Mozilla Seamonkey 1.0.8Mozilla Seamonkey 1.0Mozilla Seamonkey 1.1.8Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0.0.3Mozilla Firefox 2.0.0.4Mozilla FirefoxMozilla Thunderbird 2.0.0.12Mozilla Thunderbird 1.5.0.13
NA
CVE-2008-2800
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla FirefoxMozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1.3Mozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5Mozilla Firefox 2.0.0.6
NA
CVE-2008-2801
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly implement JAR signing, which allows remote malicious users to execute arbitrary code via (1) injection of JavaScript into documents within a JAR archive or (2) a JAR archive that uses relative URLs to...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla FirefoxMozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Firefox 2.0.0.4Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1.3Mozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.5Mozilla Firefox 2.0.0.6
NA
CVE-2008-2805
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to force the upload of arbitrary local files from a client computer via vectors involving originalTarget and DOM Range.
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.8Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1.7Mozilla Seamonkey 1.1.8Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.6Mozilla Firefox 2.0.0.7Mozilla Seamonkey 1.1.5Mozilla Seamonkey 1.1.6Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.2Mozilla FirefoxMozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5
NA
CVE-2008-2808
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly escape HTML in file:// URLs in directory listings, which allows remote malicious users to conduct cross-site scripting (XSS) attacks or have unspecified other impact via a crafted filename.
Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0Mozilla Firefox 2.0 .1Mozilla Seamonkey 1.1.1Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1Mozilla Thunderbird 2.0 .12Mozilla Thunderbird 2.0 8Mozilla Firefox 2.0 .9Mozilla Firefox 2.0 8Mozilla Seamonkey 1.1.8Mozilla Seamonkey 1.1.9Mozilla Thunderbird 2.0 .6Mozilla Thunderbird 2.0 .9Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Firefox 2.0 .5Mozilla Firefox 2.0 .6Mozilla Seamonkey 1.1.5Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7
NA
CVE-2008-2810
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly identify the context of Windows shortcut files, which allows user-assisted remote malicious users to bypass the Same Origin Policy via a crafted web site for which the user has previously saved a shor...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.8Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1.8Mozilla FirefoxMozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.6Mozilla Firefox 2.0.0.7Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5Mozilla Seamonkey 1.1.4Mozilla Seamonkey 1.1.5Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.2
NA
CVE-2008-4070
Heap-based buffer overflow in Mozilla Thunderbird prior to 2.0.0.17 and SeaMonkey prior to 1.1.12 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long header in a news article, related to "canceling [a] ...
Mozilla Thunderbird 2.0.0.1Mozilla Thunderbird 2.0.0.12Mozilla Thunderbird 2.0.0.4Mozilla Thunderbird 1.0.4Mozilla Thunderbird 2.0.0.11Mozilla Thunderbird 1.5.0.10Mozilla Thunderbird 1.5.0.11Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.9Mozilla Thunderbird 0.1Mozilla Thunderbird 2.0.0.5Mozilla Thunderbird 2.0.0.6Mozilla Thunderbird 2.0.0.9Mozilla Seamonkey 1.0.9Mozilla Seamonkey 1.0.8Mozilla Seamonkey 1.0.5Mozilla Seamonkey 1.0.4Mozilla Thunderbird 1.5.0.9Mozilla Thunderbird 1.5.0.8Mozilla Thunderbird 1.0.8Mozilla Thunderbird 1.5
NA
CVE-2008-2802
Mozilla Firefox prior to 2.0.0.15, Thunderbird 2.0.0.14 and previous versions, and SeaMonkey prior to 1.1.10 allow remote malicious users to execute arbitrary code via an XUL document that includes a script from a chrome: URI that points to a fastload file, related to this file&#...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla Thunderbird 2.0.0.0Mozilla Thunderbird 2.0.0.5Mozilla Thunderbird 2.0.0.6Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Thunderbird 2.0.0.2Mozilla Thunderbird 2.0.0.3Mozilla Thunderbird 2.0.0.4Mozilla ThunderbirdMozilla Firefox 2.0.0.3Mozilla Firefox 2.0.0.4Mozilla Seamonkey 1.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000CVE-2024-4439unauthorizedCVE-2024-0042CVE-2024-31848CVE-2023-40694cache poisoningCVE-2024-23707firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook