Mozilla Firefox — свободный браузер на движке Gecko

Релизный цикл, информация об уязвимостях

Продукт: Mozilla Firefox

Вендор: mozilla

График релизов

Недавние уязвимости Mozilla Firefox

Количество 14 893

CVE-2008-1233

больше 17 лет назад

Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allows remote attackers to execute arbitrary code via "XPCNativeWrapper pollution."

CVSS2: 6.8

EPSS: Средний

CVE-2008-1241

больше 17 лет назад

GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMo ...

CVSS2: 4.3

EPSS: Низкий

CVE-2008-1235

больше 17 лет назад

Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ...

CVSS2: 9.3

EPSS: Средний

CVE-2008-1237

больше 17 лет назад

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ...

CVSS2: 6.8

EPSS: Средний

CVE-2008-1238

больше 17 лет назад

Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when gener ...

CVSS2: 5

EPSS: Низкий

CVE-2008-1234

больше 17 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0 ...

CVSS2: 4.3

EPSS: Низкий

CVE-2008-1236

больше 17 лет назад

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ...

CVSS2: 6.8

EPSS: Средний

CVE-2008-1233

больше 17 лет назад

Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ...

CVSS2: 6.8

EPSS: Средний

CVE-2008-1238

больше 17 лет назад

Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypass application protection mechanisms that rely on Referer headers, such as with some Cross-Site Request Forgery (CSRF) mechanisms.

CVSS2: 5

EPSS: Низкий

CVE-2008-1241

больше 17 лет назад

GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9 allows remote attackers to spoof form elements and redirect user inputs via a borderless XUL pop-up window from a background tab.

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2008-1233 Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allows remote attackers to execute arbitrary code via "XPCNativeWrapper pollution."	CVSS2: 6.8	22% Средний	больше 17 лет назад
CVE-2008-1241 GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMo ...	CVSS2: 4.3	4% Низкий	больше 17 лет назад
CVE-2008-1235 Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ...	CVSS2: 9.3	19% Средний	больше 17 лет назад
CVE-2008-1237 Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ...	CVSS2: 6.8	29% Средний	больше 17 лет назад
CVE-2008-1238 Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when gener ...	CVSS2: 5	6% Низкий	больше 17 лет назад
CVE-2008-1234 Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0 ...	CVSS2: 4.3	8% Низкий	больше 17 лет назад
CVE-2008-1236 Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ...	CVSS2: 6.8	29% Средний	больше 17 лет назад
CVE-2008-1233 Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ...	CVSS2: 6.8	22% Средний	больше 17 лет назад
CVE-2008-1238 Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypass application protection mechanisms that rely on Referer headers, such as with some Cross-Site Request Forgery (CSRF) mechanisms.	CVSS2: 5	6% Низкий	больше 17 лет назад
CVE-2008-1241 GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9 allows remote attackers to spoof form elements and redirect user inputs via a borderless XUL pop-up window from a background tab.	CVSS2: 4.3	4% Низкий	больше 17 лет назад

Уязвимостей на страницу