17 matches found
SUSE CVE-2010-1215
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper aka SJOW wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object...
SUSE CVE-2011-0066
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mObserverList...
Mozilla Firefox 3.6.x < 3.6.28 Multiple Vulnerabilities
Binary data 6351.prm...
Firefox 3.6.x < 3.6.28 Multiple Vulnerabilities (Mac OS X)
The installed version of Firefox 3.6.x is potentially affected by the following security issues : - Multiple memory corruption issues. By tricking a user into visiting a specially crafted page, these issues may allow an attacker to execute arbitrary code in the context of the affected application...
Firefox 3.6.x < 3.6.21 Out-of-Date CA List
The installed version of Firefox 3.6.x is earlier than 3.6.21 and is potentially affected by an out-of-date certificate authority list. Due to the issuance of several fraudulent SSL certificates, the certificate authority DigiNotar has been disabled in Mozilla Firefox. C Tenable Network Security,...
Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors, a different vulnerability than...
Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors, a different vulnerability than...
Mozilla Firefox 3.6.x < 3.6.18 Multiple Vulnerabilities
Binary data 5964.prm...
CVE-2011-0075
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...
Mozilla use-after-free error using Web Workers (MFSA 2011-06)
Use-after-free vulnerability in the Web Workers implementation in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to execute arbitrary code via vectors related to a JavaScript Worker and garbage collection...
MDVA-2010:135 : desktop-common-data
xvt script was not detecting KDE4 properly and was forking KDE4 terminal, which could break some scripts. This updates fixes this issue and also disable some unwanted sound events when using Firefox 3.6.x under GNOME. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the...
CVE-2010-1212
js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1 propagation of deep aborts in...
CVE-2010-1203
The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp...
CVE-2010-1203
The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp...
Mozilla Firefox 3.6.x < 3.6.4 Multiple Vulnerabilities
Binary data 5580.prm...
Mandriva Update for desktop-common-data MDVA-2010:135 (desktop-common-data)
Check for the Version of desktop-common-data OpenVAS Vulnerability Test Mandriva Update for desktop-common-data MDVA-2010:135 desktop-common-data Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
CVE-2010-1121
Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collectio...