| 8! | Mozilla Firefox / Thunderbird / SeaMonkey multiple security vulnerabilities
updated since 19.02.2010
|
 | | Multiple memory corruptions, use-after-free, crossite scripting. |
| 8! | Mozilla Firefox multiple security vulnerabilities
|
| | Multiple memory corruptions on HTML and media formats parsing, NTLM reflection attacks, location spoofing, privilege escalation, information leak. |
| 8! | Mozilla Firefox / Seamonkey multiple security vulnerabilities
updated since 28.10.2009
|
| | Buffer ovefflows, privilege escalation, information leak, crossite scripting. |
| 7! | Mozilla Firefox multiple security vulnerabilities
updated since 10.09.2009
|
| | Code execution, memory corruptions, address spoofing, hidden certificate installation. |
| | DoS in multiple browsers
|
| | Hang or crash on oversized location.hash |
| 8! | Mozilla Firefox, Thunderbird, SeaMonkey, NSS multiple security vulnerabilities
|
| | Certificate spoofing, buffer overflow, code execution. |
| | Mozilla Firefox URL spoofing
|
| | It's possible to spoof error text on invalid URL. |
| | Mozilla Firefox / Microsoft Internet Explorer / Opera /Google Chrome DoS
updated since 26.05.2009
|
| | Hang on circle with large radius value in SVG tags. Hang and memory leak on reload with keygen tag. |
| 8! | Mozilla Firefox multiple security vulnerabilities
|
| | Privilege escalations, crossite scripting, DoS, race conditions, SSL spoofing if HTTP proxy is used, multiple memory corruptions. |
| | Mozilla Firefox for Linux / Unix DoS
|
| | Crash on large size GIF used ad body background. |
| | Mizilla Firefox / Opera DoS
|
| | Large number of netsted embedded elements leads to crash or resources exhaustion. |
| 7! | Mozilla Firefox / Seamonkey multiple security vulnerabilities
updated since 23.04.2009
|
| | Memory corruption, same policy origin violation, crossite scripting. |
| 7! | Mozilla Firefox / Seamonkey / Thunderbird multiple security vulnerabilities
updated since 06.03.2009
|
| | Crossite XML access, multiple memory corruptions. |
| | Multiple browsers inherited charset crossite scripting
updated since 25.02.2007
|
| | If [age with undefined charset is displayed in frame, codepage of parent page is used. It makes it possible to conduct crossite scripting attack with e.g. UTF-7, EUC-JP (SHIFT_JIS) charset. |
| | Google Chrome, Mozilla Firefox, Opera, Internet Explorer browsers DoS
updated since 30.09.2008
|
| | Calling window.print() function in loop causes browser to hang. Uncontrollable memory allocation. Script can close window without user approval. |
| | Mozilla DoS
|
| | Server reply with 206 code causes application to hang. |
| | Mozilla Firefox, Microsoft Internet Explorer, Opera and Google Chrome DoS
|
| | Printing <irame> in endless loop from javascript causes resources exhaustion and leads to browser hang. |
| 8! | Mozilla Firefox / Thunderbird / Seamonkey multiple seucrity vulnerabilities
updated since 18.12.2008
|
| | Crossite scripting, crossite data access, memory corruptions, code execution, filtering bypass, user session tracking. |
| | Internet Explorer, Opera, Google Chrome, Mozilla browsers DoS
updated since 03.10.2008
|
| | window.close() в цикле на событие OnLoad() приводит к зависанию браузера. Multiple resource exhaustion attacks with Javascript. |
| 9! | Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
|
| | Information leak, free'd memory reusing, privilege escalation, buffer overflow, crossite scripting, protection bypass. |
| | Mozilla FireFox information leak
updated since 08.10.2008
|
| | Information leak on local HTML file opening. |
| 7! | Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
updated since 29.09.2008
|
| | Memory corruptions, privilege escalation, crossite scripting, DoS, buffer overflow |
| | Mozilla Firefox / Opera / Microsoft Internet Explorer browsers DoS
|
| | window.sidebar.addPanel() in the loop causes browser to hang. |
| 7! | Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
|
| | Array index overflow on CSS parsing, crash on GIF processing under Mac OS X, code execution on command-line launch with URI. |
| 9! | Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
|
| | Multiple memory corruptions, code execution, certificate spoofing, .jar files signature spoofing, etc. |
| | |
