Mozilla Firefox — свободный браузер на движке Gecko
Релизный цикл, информация об уязвимостях
График релизов
Количество 15 151
CVE-2005-2265
Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 ...
CVE-2005-2261
Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, ...
CVE-2005-2270
Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone ...
CVE-2005-2267
Firefox before 1.0.5 allows remote attackers to steal information and ...
CVE-2005-2262
Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers t ...
CVE-2005-2263
The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ...
CVE-2005-2260
The browser user interface in Firefox before 1.0.5, Mozilla before 1.7 ...
CVE-2005-2265
Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.
CVE-2005-2269
Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as demonstrated using an XHTML document with IMG tags with custom properties ("XHTML node spoofing").
CVE-2005-2264
Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2005-2265 Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 ... | CVSS2: 5 | 82% Высокий | больше 20 лет назад |
| CVE-2005-2261 Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, ... | CVSS2: 7.5 | 5% Низкий | больше 20 лет назад |
| CVE-2005-2270 Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone ... | CVSS2: 7.5 | 36% Средний | больше 20 лет назад |
| CVE-2005-2267 Firefox before 1.0.5 allows remote attackers to steal information and ... | CVSS2: 7.5 | 5% Низкий | больше 20 лет назад |
| CVE-2005-2262 Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers t ... | CVSS2: 5.1 | 16% Средний | больше 20 лет назад |
| CVE-2005-2263 The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ... | CVSS2: 5 | 5% Низкий | больше 20 лет назад |
| CVE-2005-2260 The browser user interface in Firefox before 1.0.5, Mozilla before 1.7 ... | CVSS2: 7.5 | 4% Низкий | больше 20 лет назад |
 | CVE-2005-2265 Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string. | CVSS2: 5 | 82% Высокий | больше 20 лет назад |
| CVE-2005-2269 Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as demonstrated using an XHTML document with IMG tags with custom properties ("XHTML node spoofing"). | CVSS2: 7.5 | 8% Низкий | больше 20 лет назад |
| CVE-2005-2264 Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL. | CVSS2: 7.5 | 3% Низкий | больше 20 лет назад |
Уязвимостей на страницу