Firefox Security Vulnerabilities and Issues — Firefox CVE List

Lucene search

MozillaFirefox

3 matches found

CVE•added 2007/09/12 8:17 p.m.•78 views

CVE-2007-4841

Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to execute arbitrary commands via a (1) mailto, (2) nntp, (3) news, or (4) snews URI with invalid "%" encoding, related to improper file type handling on Windows XP with Internet Explorer ...

9.3CVSS7.2AI score0.43235EPSS

CVE•added 2007/09/13 6:17 p.m.•65 views

CVE-2007-4879

Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey before 1.1.9, can automatically install TLS client certificates with minimal user interaction, and automatically sends these certificates when requested, which makes it easier for remote web sites to track user activities across domains by requ...

5CVSS6.1AI score0.01429EPSS

CVE•added 2007/09/24 12:17 a.m.•56 views

CVE-2007-5045

Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Mozilla Firefox before 2.0.0.7 installed, allows remote attackers to execute arbitrary commands via a QuickTime Media Link (QTL) file with an embed XML element and a qtnext parameter containing the F...

9.3CVSS8.1AI score0.49726EPSS