Searching mozilla software vulnerabilities

Unknown vulnerability in bonsai Mozilla CVS que

vulnerability | arbitrary | attackers | commands | www-data | execute | Unknown | Mozilla | remote | bonsai | allows | query | user | tool | CVS |

Unknown vulnerability in bonsai Mozilla CVS query tool allows remote attackers to execute arbitrary commands as the www-data user.


bonsai Mozilla CVS query tool allows remote att

authentication | parameters | attackers | Mozilla | without | access | remote | bonsai | allows | query | gain | page | tool | CVS |

bonsai Mozilla CVS query tool allows remote attackers to gain access to the parameters page without authentication.


Mozilla allows remote attackers to bypass inten

restrictions | application | attackers | intended | "%2e%2e" | Mozilla | access | allows | remote | cookie | bypass | via | web |

Mozilla allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Mozilla to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.


Stack-based buffer overflow in the writeGroup f

nsVCardObjcpp | Stack-based | writeGroup | function | overflow | Preview | Release | Firefox | Mozilla | buffer | before |

Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to execute arbitrary code via malformed VCard attachments that are not properly handled when previewing a message.


Integer overflow in the bitmap (BMP) decoder fo

overflow | Integer | bitmap |

Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide bitmap files that trigger heap-based buffer overflows.


Mozilla Firefox before the Preview Release, Moz

Release | Preview | Mozilla | Firefox | before |

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possible execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.


The XPInstall installer in Mozilla Firefox befo

installer | XPInstall | Preview | Release | Mozilla | Firefox | before |

The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code.


The Linux install .tar.gz archives for Mozilla

archives | Firefox | Release | Preview | Mozilla | install | before | Linux | targz |

The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow local users to overwrite those files and execute arbitrary code.


Mozilla Firefox before the Preview Release, Moz

Release | Preview | Mozilla | Firefox | before |

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive information, via script-generated events such as Ctrl-Ins.


Mozilla Firefox before the Preview Release, Moz

Release | Preview | Mozilla | Firefox | before |

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages.


Unknown vulnerability in LiveConnect in Mozilla

vulnerability | LiveConnect | locations | arbitrary | attackers | Unknown | Mozilla | allows | remote | known | files | beta | read |

Unknown vulnerability in LiveConnect in Mozilla 1.7 beta allows remote attackers to read arbitrary files in known locations.


Mozilla Firefox before 0.10, Mozilla 5.0, and G

Firefox | Mozilla | before |

Mozilla Firefox before 0.10, Mozilla 5.0, and Gecko Monday, September 13, 2004 allows remote attackers to cause a denial of service (application crash or memory consumption) via a large binary file with a .html extension.


Firefox before 1.0.7 and Mozilla before Suite 1

Firefox | before |

Firefox before 1.0.7 and Mozilla before Suite 1.7.12 allows remote attackers to execute Javascript with chrome privileges via an about: page such as about:mozilla.


Mozilla Firefox 1.0.1 and possibly other versio

Firefox | Mozilla |

Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla and Thunderbird, allows remote attackers to spoof the URL in the Status Bar via an A HREF tag that contains a TABLE tag that contains another A tag.


Mozilla Firefox and Thunderbird 1.x before 1.5.

Thunderbird | Firefox | Mozilla | before |

Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via "an invalid and non-sensical ordering of table-related tags" that results in a negative array index.


nsHTMLContentSink.cpp in Mozilla Firefox and Th

nsHTMLContentSinkcpp | Thunderbird | Firefox | Mozilla | before | 10x |

nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors involving a "particular sequence of HTML tags" that leads to memory corruption.


Unspecified vulnerability in Mozilla Firefox an

vulnerability | Thunderbird | Unspecified | Firefox | Mozilla | before |

Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with "Print Preview".


Unspecified vulnerability in Mozilla Firefox an

vulnerability | Thunderbird | Unspecified | Firefox | Mozilla | before |

Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via unknown vectors related to the crypto.generateCRMFRequest method.


Mozilla Firefox 2.0.0.4 and earlier allows remo

Firefox | Mozilla |

Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read files in the local Firefox installation directory via a resource:// URI.


Multiple unspecified vulnerabilities in Mozilla

vulnerabilities | unspecified | Multiple | Firefox | Mozilla | before |

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper.


Software vulnerabilities results 1 to 20 of 290     
Page: 12345...15