EUVD-2021-30471

Malicious code in bioql PyPI...

PT-2025-18160

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 138 Firefox ESR versions prior to 128.10 Thunderbird versions prior to 138 Thunderbird ESR versions prior to 128.10 Description Memory safety bugs are present, showing evidence of memory corruption. It is presumed tha...

PT-2025-14109

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 137 Thunderbird versions prior to 137 Description The issue concerns memory safety bugs that were present in certain versions of Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption, and it...

Linux Distros Unpatched Vulnerability : CVE-2011-2372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the...

Mozilla: Crash in NSS TLS method

The Mozilla Foundation Security Advisory describes this flaw as: An unchecked return value in TLS handshake code could have caused a potentially exploitable crash...

Mozilla: Out of bounds read when decoding H264

The Mozilla Foundation Security Advisory describes this flaw as: An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash...

Denial Of Service (DoS)

Mozilla is vulnerable to denial of service. The vulnerability exists through a use-after-free issue while running the nsDocShell destructor...

CVE-2020-6800

Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. In general, these flaws...

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Buffer overflows, memory corruptions, clickjacking...

Mozilla Firefox, Thunderbird, SeaMonkey, NSS multiple security vulnerabilities

Certificate spoofing, buffer overflow, code execution...

Input stealing from other tabs — Mozilla

Jakob Balle of Secunia reported two vulnerabilities in windows with multiple tabs. Malicious content in a background tab can attempt to steal information intended for the topmost tab by popping up prompt dialog that appears to come from the trusted site, or by silently redirecting input focus to ...

Opened attachments are temporarily saved world-readable — Mozilla

Mozilla software released after March 2004 saves some temporary files with world-readable permissions. In the browser this is primarily content fed to helper applications for example, PDF files, and in the mail clients it is attachments...

US-CERT Technical Cyber Security Alert TA04-261A -- Multiple vulnerabilities in Mozilla products

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Technical Cyber Security Alert TA04-261A Multiple vulnerabilities in Mozilla products Original release date: September 17, 2004 Last revised: -- Source: US-CERT Systems Affected Mozilla software, including the following: Mozilla web browser, email and...

Mozilla < 1.0rc2 XMLHttpRequest File / Directory Disclosure (deprecated)

Binary data 1753.prm...

Netscape/Mozilla SOAP integer overflow

Integer overflow in SOAPParameter object constructor...

Mozilla crossite scripting

By using local cache it's possible to access local files...

Mozilla crossite scripting

It's possible to access document content befor page downloaded completely...

Mozilla race condition crossite scripting

In beggining of new page download old page can get an access to new context...

Символьные линки personal security manager в Mozilla &#40;symbolic links&#41;

Проблема символьных линков при создании временного каталога...