CVE-2025-3070

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

CVE-2025-0447

Inappropriate implementation in Navigation in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

CVE-2013-0887

The developer-tools process in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly restrict privileges during interaction with a connected server, which has unspecified impact and attack vectors...

Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64

CVE-2009-2654 firefox: URL bar spoofing vulnerability CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes CVE-2009-307...

Debian Security Advisory DSA 2295-1 (iceape)

The remote host is missing an update to iceape announced via advisory DSA 2295-1. OpenVAS Vulnerability Test $Id: deb22951.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2295-1 iceape Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Debian DSA-2295-1 : iceape - several vulnerabilities

Several vulnerabilities have been found in the Iceape internet suite, an unbranded version of SeaMonkey : - CVE-2011-0084 'regenrecht' discovered that incorrect pointer handling in the SVG processing code could lead to the execution of arbitrary code. - CVE-2011-2378 'regenrecht' discovered that...

USN-1050-1: Thunderbird vulnerabilities

Jesse Ruderman, Igor Bukanov, Olli Pettay, Gary Kwong, Jeff Walden, Henry Sivonen, Martijn Wargers, David Baron and Marcia Knous discovered several memory issues in the browser engine. An attacker could exploit these to crash the browser or possibly run arbitrary code as the user invoking the...

Mozilla Foundation Security Advisory 2010-76

Mozilla Foundation Security Advisory 2010-76 Title: Chrome privilege escalation with window.open and isindex element Impact: Critical Announced: December 9, 2010 Reporter: echo Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.13 Firefox 3.5.16 SeaMonkey 2.0.11 Description Security researcher ec...

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 6979)

Mozilla Firefox was updated to version 3.5.9 fixing lots of bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed...

Mozilla Thunderbird 3.1.x < 3.1.1 Multiple Vulnerabilities

Binary data 5609.prm...

openSUSE Security Update : firefox35upgrade (firefox35upgrade-2262)

This patch updates Mozilla Firefox from the 3.0 stable branch to the 3.5.9 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes...

SuSE 10 Security Update : Mozilla XULRunner (ZYPP Patch Number 6976)

Mozilla XULRunner was updated to version 1.9.0.19 fixing lots of bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes show...

Mozilla Foundation Security Advisory 2010-21

Mozilla Foundation Security Advisory 2010-21 Title: Arbitrary code execution with Firebug XMLHttpRequestSpy Impact: High Announced: March 30, 2010 Reporter: mozbugra4 Products: Firefox, SeaMonkey Fixed in: Firefox 3.5.8 Firefox 3.0.19 SeaMonkey 2.0.3 Description Mozilla security researcher...

DSA-2027-1 xulrunner - several vulnerabilities

Bulletin has no description...

Mozilla Firefox < 3.0.19 Multiple Vulnerabilities

Binary data 5493.prm...

Mozilla Firefox < 3.0.19 Multiple Vulnerabilities

Binary data 801260.prm...

FreeBSD : mozilla -- multiple vulnerabilities (9ccfee39-3c3b-11df-9edc-000f20797ede)

Mozilla Project reports : MFSA 2010-24 XMLDocument::load doesn't check nsIContentPolicy MFSA 2010-23 Image src redirect to mailto: URL opens email editor MFSA 2010-22 Update NSS to support TLS renegotiation indication MFSA 2010-21 Arbitrary code execution with Firebug XMLHttpRequestSpy MFSA 2010-...

mozilla -- multiple vulnerabilities

Mozilla Project reports: MFSA 2010-24 XMLDocument::load doesn't check nsIContentPolicy MFSA 2010-23 Image src redirect to mailto: URL opens email editor MFSA 2010-22 Update NSS to support TLS renegotiation indication MFSA 2010-21 Arbitrary code execution with Firebug XMLHttpRequestSpy MFSA 2010-2...

Debian DSA-1956-1 : xulrunner - several vulnerabilities

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3986 : David James discovered that the window.opener...

SeaMonkey < 2.0.3 Multiple Vulnerabilities

The installed version of SeaMonkey is earlier than 2.0.3. Such versions are potentially affected by the following security issues : - Multiple crashes can result in arbitrary code execution. MFSA 2010-01 - The implementation of 'Web Workers' contained an error in its handling of array data types...