4 matches found
SUSE CVE-2006-6503
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting XSS protection by changing the src attribute of an IMG element to a javascript: URI...
SUSE CVE-2006-6507
Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting XSS protection via vectors related to a Function.prototype regression error...
Firefox 2 XSS attack vectors in feed preview
Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836...
PT-2008-6182 · Mozilla +1 · Firefox +1
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 2.x through 2.0.0.17 Mozilla Firefox versions 3.x through 3.0.3 Description: The issue allows remote attackers to violate the same origin policy, enabling cross-site scripting XSS attacks and the execution of arbitrar...