Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 151
CVE-2006-6499
The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers to cause a denial of service via any plugins that reduce the precision.
CVE-2006-6502
Use-after-free vulnerability in the LiveConnect bridge code for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) via unknown vectors.
CVE-2006-6501
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.
CVE-2006-6504
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonke ...
CVE-2006-6506
The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends ...
CVE-2006-6501
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ...
CVE-2006-6500
Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5. ...
CVE-2006-6502
Use-after-free vulnerability in the LiveConnect bridge code for Mozill ...
CVE-2006-6507
Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass C ...
CVE-2006-6498
Multiple unspecified vulnerabilities in the JavaScript engine for Mozi ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2006-6499 The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers to cause a denial of service via any plugins that reduce the precision. | CVSS2: 4.3 | 14% Средний | почти 19 лет назад |
| CVE-2006-6502 Use-after-free vulnerability in the LiveConnect bridge code for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) via unknown vectors. | CVSS2: 7.1 | 21% Средний | почти 19 лет назад |
| CVE-2006-6501 Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function. | CVSS2: 6.8 | 26% Средний | почти 19 лет назад |
| CVE-2006-6504 Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonke ... | CVSS2: 9.3 | 42% Средний | почти 19 лет назад |
| CVE-2006-6506 The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends ... | CVSS2: 4.3 | 3% Низкий | почти 19 лет назад |
| CVE-2006-6501 Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ... | CVSS2: 6.8 | 26% Средний | почти 19 лет назад |
| CVE-2006-6500 Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5. ... | CVSS2: 6.8 | 38% Средний | почти 19 лет назад |
| CVE-2006-6502 Use-after-free vulnerability in the LiveConnect bridge code for Mozill ... | CVSS2: 7.1 | 21% Средний | почти 19 лет назад |
| CVE-2006-6507 Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass C ... | CVSS2: 4.3 | 4% Низкий | почти 19 лет назад |
| CVE-2006-6498 Multiple unspecified vulnerabilities in the JavaScript engine for Mozi ... | CVSS2: 6.8 | 11% Средний | почти 19 лет назад |
Уязвимостей на страницу