Firefox Security Vulnerabilities and Issues — Firefox CVE List

Lucene search

MozillaFirefox

3 matches found

CVE•added 2007/08/08 1:17 a.m.•83 views

CVE-2007-3845

Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching "a file handling program based on the file extension at the end of the URI," a variant of...

9.3CVSS7.1AI score0.43235EPSS

CVE•added 2007/08/08 1:17 a.m.•73 views

CVE-2007-3844

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that inserts a (1) javascript: or (2) data: link into an about:blank document loaded by chrome via (a) the ...

4.3CVSS5.8AI score0.26705EPSS

CVE•added 2007/08/15 12:17 a.m.•39 views

CVE-2007-4357

Mozilla Firefox 2.0.0.6 and earlier allows remote attackers to spoof the contents of the status bar via a link to a data: URI containing an encoded URL. NOTE: the severity of this issue has been disputed by a reliable third party, since the intended functionality of the status bar allows it to be m...

5CVSS6.5AI score0.00559EPSS