Mozilla Firefox — свободный браузер на движке Gecko

Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable ...

The Form Fill feature in Firefox before 1.0.1 allows remote attackers ...

The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Su ...

Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 all ...

FireFox 1.0.1 and Mozilla before 1.7.6 do not sufficiently address all ...

Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site then cause the user to double-click at a certain screen position, aka "Fireflashing."

Firefox before 1.0.3 and Mozilla Suite before 1.7.7, when blocking a popup, allows remote attackers to execute arbitrary code via a javascript: URL that is executed when the user selects the "Show javascript" option.

Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to obtain sensitive data from the clipboard via Javascript that generates a middle-click event on systems for which a middle-click performs a paste operation.

The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability.

Firefox before 1.0.1 allows remote attackers to spoof the (1) security and (2) download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing."