CVE search results

91 – 100 of 163 results

Detailed view

Sort by:

CVE-2009-3070

Medium priority

Fixed

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

4 affected packages

firefox-3.0, firefox-3.5, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3069

Medium priority

Fixed

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

2 affected packages

firefox-3.5, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox-3.5	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3077

Medium priority

Fixed

Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, does not properly manage pointers for the columns (aka TreeColumns) of a XUL tree element, which allows remote attackers to execute arbitrary code via a crafted HTML document,...

5 affected packages

firefox-3.0, firefox-3.5, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3075

Medium priority

Fixed

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.2, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service...

5 affected packages

firefox-3.0, firefox-3.5, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3072

Medium priority

Fixed

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.3, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service...

5 affected packages

firefox-3.0, firefox-3.5, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3014

Low priority

Ignored

Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; SeaMonkey 1.1.17; and Mozilla 1.7.x and earlier do not properly handle javascript: URIs in HTML links within 302 error documents sent from web servers, which...

5 affected packages

firefox, seamonkey, xulrunner-1.9, xulrunner-1.9.1, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2009-3012

Medium priority

Ignored

Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors...

4 affected packages

firefox, seamonkey, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3010

Low priority

Ignored

Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; SeaMonkey 1.1.17; and Mozilla 1.7.x and earlier do not properly block data: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct...

4 affected packages

firefox, seamonkey, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-3007

Low priority

Ignored

Mozilla Firefox 3.5.1 and SeaMonkey 1.1.17, and Flock 2.5.1, allow context-dependent attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary file: URL after a victim has visited any file: URL,...

2 affected packages

seamonkey, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
seamonkey	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

CVE-2009-2953

Negligible priority

Ignored

Mozilla Firefox 3.0.6 through 3.0.13, and 3.5.x, allows remote attackers to cause a denial of service (CPU consumption) via JavaScript code with a long string value for the hash property (aka location.hash), a related issue...

3 affected packages

firefox, xulrunner-1.9, xulrunner-1.9.1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
xulrunner-1.9	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports