3 matches found
Mozilla Firefox/SeaMonkey UTF-8基于栈的缓冲区溢出漏洞
BUGTRAQ ID: 31397 CVE ID:CVE-2008-0016 CNCVE ID:CNCVE-20080016 Mozilla Firefox/SeaMonkey是一款开放源代码的WEB浏览器和WEB应用套件。 Mozilla Firefox/SeaMonkey处理UTF-8 URL存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 Mozilla...
CVE-2006-6507
Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting XSS protection via vectors related to a Function.prototype regression error...
CVE-2006-6585
The Extensions manager in Mozilla Firefox 2.0 does not properly populate the list of local extensions, which allows attackers to construct an extension that hides itself by finding its name in the list and then calling RemoveElement, as demonstrated by the FFsniFF extension. NOTE: it was later...