| Bug | Description |
|---|
| CVE-2017-7825 | Several fonts on OS X display some Tibetan and Arabic characters as wh ... |
| CVE-2017-7809 | A use-after-free vulnerability can occur when an editor DOM node is de ... |
| CVE-2017-7807 | A mechanism that uses AppCache to hijack a URL in a domain using fallb ... |
| CVE-2017-7804 | The destructor function for the "WindowsDllDetourPatcher" class can be ... |
| CVE-2017-7803 | When a page's content security policy (CSP) header contains a "sandbox ... |
| CVE-2017-7802 | A use-after-free vulnerability can occur when manipulating the DOM dur ... |
| CVE-2017-7801 | A use-after-free vulnerability can occur while re-computing layout for ... |
| CVE-2017-7800 | A use-after-free vulnerability can occur in WebSockets when the object ... |
| CVE-2017-7792 | A buffer overflow will occur when viewing a certificate in the certifi ... |
| CVE-2017-7791 | On pages containing an iframe, the "data:" protocol can be used to cre ... |
| CVE-2017-7787 | Same-origin policy protections can be bypassed on pages with embedded ... |
| CVE-2017-7786 | A buffer overflow can occur when the image renderer attempts to paint ... |
| CVE-2017-7785 | A buffer overflow can occur when manipulating Accessible Rich Internet ... |
| CVE-2017-7784 | A use-after-free vulnerability can occur when reading an image observe ... |
| CVE-2017-7782 | An error in the "WindowsDllDetourPatcher" where a RWX ("Read/Write/Exe ... |
| CVE-2017-7779 | Memory safety bugs were reported in Firefox 54, Firefox ESR 52.2, and ... |
| CVE-2017-7778 | A number of security vulnerabilities in the Graphite 2 library includi ... |
| CVE-2017-7777 | Use of uninitialized memory in Graphite2 library in Firefox before 54 ... |
| CVE-2017-7776 | Heap-based Buffer Overflow read in Graphite2 library in Firefox before ... |
| CVE-2017-7774 | Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphi ... |
| CVE-2017-7773 | Heap-based Buffer Overflow write in Graphite2 library in Firefox befor ... |
| CVE-2017-7772 | Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 i ... |
| CVE-2017-7771 | Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphi ... |
| CVE-2017-7765 | The "Mark of the Web" was not correctly saved on Windows when files wi ... |
| CVE-2017-7764 | Characters from the "Canadian Syllabics" unicode block can be mixed wi ... |
| CVE-2017-7763 | Default fonts on OS X display some Tibetan characters as whitespace. W ... |
| CVE-2017-7758 | An out-of-bounds read vulnerability with the Opus encoder when the num ... |
| CVE-2017-7757 | A use-after-free vulnerability in IndexedDB when one of its objects is ... |
| CVE-2017-7756 | A use-after-free and use-after-scope vulnerability when logging errors ... |
| CVE-2017-7754 | An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" ... |
| CVE-2017-7753 | An out-of-bounds read occurs when applying style rules to pseudo-eleme ... |
| CVE-2017-7752 | A use-after-free vulnerability during specific user interactions with ... |
| CVE-2017-7751 | A use-after-free vulnerability with content viewer listeners that resu ... |
| CVE-2017-7750 | A use-after-free vulnerability during video control operations when a ... |
| CVE-2017-7749 | A use-after-free vulnerability when using an incorrect URL during the ... |
| CVE-2017-5472 | A use-after-free vulnerability with the frameloader during tree recons ... |
| CVE-2017-5470 | Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. S ... |
| CVE-2017-5410 | Memory corruption resulting in a potentially exploitable crash during ... |
| CVE-2017-5408 | Video files loaded video captions cross-origin without checking for th ... |
| CVE-2017-5407 | Using SVG filters that don't use the fixed point math implementation o ... |
| CVE-2017-5405 | Certain response codes in FTP connections can result in the use of uni ... |
| CVE-2017-5404 | A use-after-free error can occur when manipulating ranges in selection ... |
| CVE-2017-5402 | A use-after-free can occur when events are fired for a "FontFace" obje ... |
| CVE-2017-5401 | A crash triggerable by web content in which an "ErrorResult" reference ... |
| CVE-2017-5400 | JIT-spray targeting asm.js combined with a heap spray allows for a byp ... |
| CVE-2017-5398 | Memory safety bugs were reported in Thunderbird 45.7. Some of these bu ... |
| CVE-2017-5396 | A use-after-free vulnerability in the Media Decoder when working with ... |
| CVE-2017-5390 | The JSON viewer in the Developer Tools uses insecure methods to create ... |
| CVE-2017-5383 | URLs containing certain unicode glyphs for alternative hyphens and quo ... |
| CVE-2017-5380 | A potential use-after-free found through fuzzing during DOM manipulati ... |
| CVE-2017-5378 | Hashed codes of JavaScript objects are shared between pages. This allo ... |
| CVE-2017-5376 | Use-after-free while manipulating XSL in XSLT documents. This vulnerab ... |
| CVE-2017-5375 | JIT code allocation can allow for a bypass of ASLR and DEP protections ... |
| CVE-2017-5373 | Memory safety bugs were reported in Firefox 50.1 and Firefox ESR 45.6. ... |
| CVE-2016-9905 | A potentially exploitable crash in "EnumerateSubDocuments" while addin ... |
| CVE-2016-9904 | An attacker could use a JavaScript Map/Set timing attack to determine ... |
| CVE-2016-9900 | External resources that should be blocked when loaded by SVG images ca ... |
| CVE-2016-9899 | Use-after-free while manipulating DOM events and removing audio elemen ... |
| CVE-2016-9898 | Use-after-free resulting in potentially exploitable crash when manipul ... |
| CVE-2016-9897 | Memory corruption resulting in a potentially exploitable crash during ... |
| CVE-2016-9895 | Event handlers on "marquee" elements were executed despite a strict Co ... |
| CVE-2016-9893 | Memory safety bugs were reported in Thunderbird 45.5. Some of these bu ... |
| CVE-2016-9079 | A use-after-free vulnerability in SVG Animation has been discovered. A ... |
| CVE-2016-9074 | An existing mitigation of timing side-channel attacks is insufficient ... |
| CVE-2016-9066 | A buffer overflow resulting in a potentially exploitable crash due to ... |
| CVE-2016-5297 | An error in argument length checking in JavaScript, leading to potenti ... |
| CVE-2016-5296 | A heap-buffer-overflow in Cairo when processing SVG content caused by ... |
| CVE-2016-5294 | The Mozilla Updater can be made to choose an arbitrary target working ... |
| CVE-2016-5291 | A same-origin policy bypass with local shortcut files to load arbitrar ... |
| CVE-2016-5290 | Memory safety bugs were reported in Firefox 49 and Firefox ESR 45.4. S ... |
| CVE-2016-5257 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2836 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2835 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2818 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2807 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2806 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-2805 | Unspecified vulnerability in the browser engine in Mozilla Firefox ESR ... |
| CVE-2016-2802 | The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in Graphit ... |
| CVE-2016-2801 | The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp i ... |
| CVE-2016-2800 | The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ... |
| CVE-2016-2799 | Heap-based buffer overflow in the graphite2::Slot::setAttr function in ... |
| CVE-2016-2798 | The graphite2::GlyphCache::Loader::Loader function in Graphite 2 befor ... |
| CVE-2016-2797 | The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 be ... |
| CVE-2016-2796 | Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code f ... |
| CVE-2016-2795 | The graphite2::FileFace::get_table_fn function in Graphite 2 before 1. ... |
| CVE-2016-2794 | The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphi ... |
| CVE-2016-2793 | CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox ... |
| CVE-2016-2792 | The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ... |
| CVE-2016-2791 | The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, ... |
| CVE-2016-2790 | The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3 ... |
| CVE-2016-1979 | Use-after-free vulnerability in the PK11_ImportDERPrivateKeyInfoAndRet ... |
| CVE-2016-1977 | The Machine::Code::decoder::analysis::set_ref function in Graphite 2 b ... |
| CVE-2016-1974 | The nsScannerString::AppendUnicodeTo function in Mozilla Firefox befor ... |
| CVE-2016-1966 | The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRu ... |
| CVE-2016-1964 | Use-after-free vulnerability in the AtomicBaseIncDec function in Mozil ... |
| CVE-2016-1962 | Use-after-free vulnerability in the mozilla::DataChannelConnection::Cl ... |
| CVE-2016-1961 | Use-after-free vulnerability in the nsHTMLDocument::SetBody function i ... |
| CVE-2016-1960 | Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string ... |
| CVE-2016-1957 | Memory leak in libstagefright in Mozilla Firefox before 45.0 and Firef ... |
| CVE-2016-1954 | The nsCSPContext::SendReports function in dom/security/nsCSPContext.cp ... |
| CVE-2016-1950 | Heap-based buffer overflow in Mozilla Network Security Services (NSS) ... |
| CVE-2016-1935 | Buffer overflow in the BufferSubData function in Mozilla Firefox befor ... |
| CVE-2016-1930 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2016-1526 | The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite in Graph ... |
| CVE-2016-1523 | The SillMap::readFace function in FeatureMap.cpp in Libgraphite in Gra ... |
| CVE-2015-7575 | Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozi ... |
| CVE-2015-7214 | Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow rem ... |
| CVE-2015-7213 | Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4 ... |
| CVE-2015-7212 | Integer overflow in the mozilla::layers::BufferTextureClient::Allocate ... |
| CVE-2015-7205 | Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in ... |
| CVE-2015-7201 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-7200 | The CryptoKey interface implementation in Mozilla Firefox before 42.0 ... |
| CVE-2015-7199 | The (1) AddWeightedPathSegLists and (2) SVGPathSegListSMILType::Interp ... |
| CVE-2015-7198 | Buffer overflow in the rx::TextureStorage11 class in ANGLE, as used in ... |
| CVE-2015-7197 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperl ... |
| CVE-2015-7194 | Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ... |
| CVE-2015-7193 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperl ... |
| CVE-2015-7189 | Race condition in the JPEGEncoder function in Mozilla Firefox before 4 ... |
| CVE-2015-7188 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow rem ... |
| CVE-2015-7183 | Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape P ... |
| CVE-2015-7182 | Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Sec ... |
| CVE-2015-7181 | The sec_asn1d_parse_leaf function in Mozilla Network Security Services ... |
| CVE-2015-4513 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-4489 | The nsTArray_Impl class in Mozilla Firefox before 40.0, Firefox ESR 38 ... |
| CVE-2015-4488 | Use-after-free vulnerability in the StyleAnimationValue class in Mozil ... |
| CVE-2015-4487 | The nsTSubstring::ReplacePrep function in Mozilla Firefox before 40.0, ... |
| CVE-2015-4474 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-4473 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-4000 | The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is ena ... |
| CVE-2015-2741 | Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunder ... |
| CVE-2015-2740 | Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function ... |
| CVE-2015-2739 | The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0 ... |
| CVE-2015-2738 | The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YC ... |
| CVE-2015-2737 | The rx::d3d11::SetBufferData function in the Direct3D 11 implementatio ... |
| CVE-2015-2736 | The nsZipArchive::BuildFileList function in Mozilla Firefox before 39. ... |
| CVE-2015-2735 | nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x befo ... |
| CVE-2015-2734 | The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D ... |
| CVE-2015-2731 | Use-after-free vulnerability in the CSPService::ShouldLoad function in ... |
| CVE-2015-2726 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-2725 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-2724 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-2721 | Mozilla Network Security Services (NSS) before 3.19, as used in Mozill ... |
| CVE-2015-2716 | Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Fire ... |
| CVE-2015-2713 | Use-after-free vulnerability in the SetBreaks function in Mozilla Fire ... |
| CVE-2015-2710 | Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefo ... |
| CVE-2015-2708 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-0973 | Buffer overflow in the png_read_IDAT_data function in pngrutil.c in li ... |
| CVE-2015-0836 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-0833 | Multiple untrusted search path vulnerabilities in updater.exe in Mozil ... |
| CVE-2015-0831 | Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObject ... |
| CVE-2015-0827 | Heap-based buffer overflow in the mozilla::gfx::CopyRect function in M ... |
| CVE-2015-0822 | The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefo ... |
| CVE-2015-0816 | Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunder ... |
| CVE-2015-0815 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2015-0813 | Use-after-free vulnerability in the AppendElements function in Mozilla ... |
| CVE-2015-0807 | The navigator.sendBeacon implementation in Mozilla Firefox before 37.0 ... |
| CVE-2015-0801 | Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunder ... |
| CVE-2015-0797 | GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefo ... |
| CVE-2014-9495 | Heap-based buffer overflow in the png_combine_row function in libpng b ... |
| CVE-2014-8639 | Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird ... |
| CVE-2014-8638 | The navigator.sendBeacon implementation in Mozilla Firefox before 35.0 ... |
| CVE-2014-8634 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... |
| CVE-2014-2018 | Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x t ... |
| CVE-2014-1595 | Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and Thunder ... |
| CVE-2014-1594 | Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird ... |
| CVE-2014-1593 | Stack-based buffer overflow in the mozilla::FileBlockCache::Read funct ... |
| CVE-2014-1592 | Use-after-free vulnerability in the nsHtml5TreeOperation function in x ... |
| CVE-2014-1591 | Mozilla Firefox 33.0 and SeaMonkey before 2.31 include path strings in ... |
| CVE-2014-1590 | The XMLHttpRequest.prototype.send method in Mozilla Firefox before 34. ... |
| CVE-2014-1589 | Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide styleshe ... |
| CVE-2014-1588 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1587 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1586 | content/base/src/nsDocument.cpp in Mozilla Firefox before 33.0, Firefo ... |
| CVE-2014-1585 | The WebRTC video-sharing feature in dom/media/MediaManager.cpp in Mozi ... |
| CVE-2014-1584 | The Public Key Pinning (PKP) implementation in Mozilla Firefox before ... |
| CVE-2014-1582 | The Public Key Pinning (PKP) implementation in Mozilla Firefox before ... |
| CVE-2014-1581 | Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Fir ... |
| CVE-2014-1580 | Mozilla Firefox before 33.0 does not properly initialize memory for GI ... |
| CVE-2014-1578 | The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x ... |
| CVE-2014-1577 | The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the ... |
| CVE-2014-1576 | Heap-based buffer overflow in the nsTransformedTextRun function in Moz ... |
| CVE-2014-1575 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1574 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1568 | Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before ... |
| CVE-2014-1567 | Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Fir ... |
| CVE-2014-1565 | The mozilla::dom::AudioEventTimeline function in the Web Audio API imp ... |
| CVE-2014-1564 | Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunder ... |
| CVE-2014-1563 | Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff ... |
| CVE-2014-1562 | Unspecified vulnerability in the browser engine in Mozilla Firefox bef ... |
| CVE-2014-1560 | Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote a ... |
| CVE-2014-1559 | Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote a ... |
| CVE-2014-1558 | Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote a ... |
| CVE-2014-1557 | The ConvolveHorizontally function in Skia, as used in Mozilla Firefox ... |
| CVE-2014-1556 | Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunder ... |
| CVE-2014-1555 | Use-after-free vulnerability in the nsDocLoader::OnProgress function i ... |
| CVE-2014-1554 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1553 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1552 | Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not properl ... |
| CVE-2014-1551 | Use-after-free vulnerability in the FontTableRec destructor in Mozilla ... |
| CVE-2014-1550 | Use-after-free vulnerability in the MediaInputPort class in Mozilla Fi ... |
| CVE-2014-1549 | The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer fun ... |
| CVE-2014-1547 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1545 | Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote a ... |
| CVE-2014-1544 | Use-after-free vulnerability in the CERT_DestroyCertificate function i ... |
| CVE-2014-1543 | Multiple heap-based buffer overflows in the navigator.getGamepads func ... |
| CVE-2014-1542 | Buffer overflow in the Speex resampler in the Web Audio subsystem in M ... |
| CVE-2014-1541 | Use-after-free vulnerability in the RefreshDriverTimer::TickDriver fun ... |
| CVE-2014-1540 | Use-after-free vulnerability in the nsEventListenerManager::CompileEve ... |
| CVE-2014-1539 | Mozilla Firefox before 30.0 and Thunderbird through 24.6 on OS X do no ... |
| CVE-2014-1538 | Use-after-free vulnerability in the nsTextEditRules::CreateMozBR funct ... |
| CVE-2014-1537 | Use-after-free vulnerability in the mozilla::dom::workers::WorkerPriva ... |
| CVE-2014-1536 | The PropertyProvider::FindJustificationRange function in Mozilla Firef ... |
| CVE-2014-1534 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1533 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1532 | Use-after-free vulnerability in the nsHostResolver::ConditionallyRefre ... |
| CVE-2014-1531 | Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeig ... |
| CVE-2014-1530 | The docshell implementation in Mozilla Firefox before 29.0, Firefox ES ... |
| CVE-2014-1529 | The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 2 ... |
| CVE-2014-1527 | Mozilla Firefox before 29.0 on Android allows remote attackers to spoo ... |
| CVE-2014-1526 | The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaM ... |
| CVE-2014-1525 | The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before ... |
| CVE-2014-1524 | The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox ... |
| CVE-2014-1523 | Heap-based buffer overflow in the read_u32 function in Mozilla Firefox ... |
| CVE-2014-1522 | The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the ... |
| CVE-2014-1519 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1518 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1514 | vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24. ... |
| CVE-2014-1513 | TypedArrayObject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x ... |
| CVE-2014-1512 | Use-after-free vulnerability in the TypeObject class in the JavaScript ... |
| CVE-2014-1511 | Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird ... |
| CVE-2014-1510 | The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR ... |
| CVE-2014-1509 | Buffer overflow in the _cairo_truetype_index_to_ucs4 function in cairo ... |
| CVE-2014-1508 | The libxul.so!gfxContext::Polygon function in Mozilla Firefox before 2 ... |
| CVE-2014-1506 | Directory traversal vulnerability in Android Crash Reporter in Mozilla ... |
| CVE-2014-1505 | The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ... |
| CVE-2014-1504 | The session-restore feature in Mozilla Firefox before 28.0 and SeaMonk ... |
| CVE-2014-1502 | The (1) WebGL.compressedTexImage2D and (2) WebGL.compressedTexSubImage ... |
| CVE-2014-1501 | Mozilla Firefox before 28.0 on Android allows remote attackers to bypa ... |
| CVE-2014-1500 | Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote att ... |
| CVE-2014-1499 | Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote att ... |
| CVE-2014-1498 | The crypto.generateCRMFRequest method in Mozilla Firefox before 28.0 a ... |
| CVE-2014-1497 | The mozilla::WaveReader::DecodeAudioData function in Mozilla Firefox b ... |
| CVE-2014-1496 | Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird ... |
| CVE-2014-1494 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1493 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1492 | The cert_TestHostName function in lib/certdb/certdb.c in the certifica ... |
| CVE-2014-1491 | Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozi ... |
| CVE-2014-1490 | Race condition in libssl in Mozilla Network Security Services (NSS) be ... |
| CVE-2014-1489 | Mozilla Firefox before 27.0 does not properly restrict access to about ... |
| CVE-2014-1488 | The Web workers implementation in Mozilla Firefox before 27.0 and SeaM ... |
| CVE-2014-1487 | The Web workers implementation in Mozilla Firefox before 27.0, Firefox ... |
| CVE-2014-1486 | Use-after-free vulnerability in the imgRequestProxy function in Mozill ... |
| CVE-2014-1485 | The Content Security Policy (CSP) implementation in Mozilla Firefox be ... |
| CVE-2014-1484 | Mozilla Firefox before 27.0 on Android 4.2 and earlier creates system- ... |
| CVE-2014-1483 | Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote att ... |
| CVE-2014-1482 | RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x befor ... |
| CVE-2014-1481 | Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird ... |
| CVE-2014-1480 | The file-download implementation in Mozilla Firefox before 27.0 and Se ... |
| CVE-2014-1479 | The System Only Wrapper (SOW) implementation in Mozilla Firefox before ... |
| CVE-2014-1478 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2014-1477 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-6674 | Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x t ... |
| CVE-2013-6673 | Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird ... |
| CVE-2013-6671 | The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26 ... |
| CVE-2013-6630 | The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as ... |
| CVE-2013-6629 | The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-t ... |
| CVE-2013-5618 | Use-after-free vulnerability in the nsNodeUtils::LastRelease function ... |
| CVE-2013-5616 | Use-after-free vulnerability in the nsEventListenerManager::HandleEven ... |
| CVE-2013-5615 | The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ... |
| CVE-2013-5613 | Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove ... |
| CVE-2013-5610 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-5609 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-5604 | The txXPathNodeUtils::getBaseURI function in the XSLT processor in Moz ... |
| CVE-2013-5603 | Use-after-free vulnerability in the nsContentUtils::ContentIsHostInclu ... |
| CVE-2013-5602 | The Worker::SetEventListener function in the Web workers implementatio ... |
| CVE-2013-5601 | Use-after-free vulnerability in the nsEventListenerManager::SetEventHa ... |
| CVE-2013-5600 | Use-after-free vulnerability in the nsIOService::NewChannelFromURIWith ... |
| CVE-2013-5599 | Use-after-free vulnerability in the nsIPresShell::GetPresContext funct ... |
| CVE-2013-5598 | PDF.js in Mozilla Firefox before 25.0 and Firefox ESR 24.x before 24.1 ... |
| CVE-2013-5597 | Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad fu ... |
| CVE-2013-5596 | The cycle collection (CC) implementation in Mozilla Firefox before 25. ... |
| CVE-2013-5595 | The JavaScript engine in Mozilla Firefox before 25.0, Firefox ESR 17.x ... |
| CVE-2013-5593 | The SELECT element implementation in Mozilla Firefox before 25.0, Fire ... |
| CVE-2013-5592 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-5591 | Unspecified vulnerability in the browser engine in Mozilla Firefox bef ... |
| CVE-2013-5590 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1738 | Use-after-free vulnerability in the JS_GetGlobalForScopeChain function ... |
| CVE-2013-1737 | Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbi ... |
| CVE-2013-1736 | The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 24 ... |
| CVE-2013-1735 | Use-after-free vulnerability in the mozilla::layout::ScrollbarActivity ... |
| CVE-2013-1732 | Buffer overflow in the nsFloatManager::GetFlowArea function in Mozilla ... |
| CVE-2013-1731 | Untrusted search path vulnerability in the GL tracing functionality in ... |
| CVE-2013-1730 | Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbi ... |
| CVE-2013-1729 | The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA g ... |
| CVE-2013-1728 | The IonMonkey JavaScript engine in Mozilla Firefox before 24.0, Thunde ... |
| CVE-2013-1727 | Mozilla Firefox before 24.0 on Android allows attackers to bypass the ... |
| CVE-2013-1726 | Mozilla Updater in Mozilla Firefox before 24.0, Firefox ESR 17.x befor ... |
| CVE-2013-1725 | Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbi ... |
| CVE-2013-1724 | Use-after-free vulnerability in the mozilla::dom::HTMLFormElement::IsD ... |
| CVE-2013-1723 | The NativeKey widget in Mozilla Firefox before 24.0, Thunderbird befor ... |
| CVE-2013-1722 | Use-after-free vulnerability in the nsAnimationManager::BuildAnimation ... |
| CVE-2013-1720 | The nsHtml5TreeBuilder::resetTheInsertionMode function in the HTML5 Tr ... |
| CVE-2013-1719 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1718 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1717 | Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbi ... |
| CVE-2013-1714 | The Web Workers implementation in Mozilla Firefox before 23.0, Firefox ... |
| CVE-2013-1713 | Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbi ... |
| CVE-2013-1712 | Multiple untrusted search path vulnerabilities in updater.exe in Mozil ... |
| CVE-2013-1710 | The crypto.generateCRMFRequest function in Mozilla Firefox before 23.0 ... |
| CVE-2013-1709 | Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbi ... |
| CVE-2013-1707 | Stack-based buffer overflow in Mozilla Updater in Mozilla Firefox befo ... |
| CVE-2013-1706 | Stack-based buffer overflow in maintenanceservice.exe in the Mozilla M ... |
| CVE-2013-1702 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1701 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1697 | The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ... |
| CVE-2013-1694 | The PreserveWrapper implementation in Mozilla Firefox before 22.0, Fir ... |
| CVE-2013-1693 | The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ... |
| CVE-2013-1692 | Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbi ... |
| CVE-2013-1690 | Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbi ... |
| CVE-2013-1687 | The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implemen ... |
| CVE-2013-1686 | Use-after-free vulnerability in the mozilla::ResetDir function in Mozi ... |
| CVE-2013-1685 | Use-after-free vulnerability in the nsIDocument::GetRootElement functi ... |
| CVE-2013-1684 | Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::Lo ... |
| CVE-2013-1683 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1682 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-1681 | Use-after-free vulnerability in the nsContentUtils::RemoveScriptBlocke ... |
| CVE-2013-1680 | Use-after-free vulnerability in the nsFrameList::FirstChild function i ... |
| CVE-2013-1679 | Use-after-free vulnerability in the mozilla::plugins::child::_geturlno ... |
| CVE-2013-1678 | The _cairo_xlib_surface_add_glyph function in Mozilla Firefox before 2 ... |
| CVE-2013-1677 | The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox befor ... |
| CVE-2013-1676 | The SelectionIterator::GetNextSegment function in Mozilla Firefox befo ... |
| CVE-2013-1675 | Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbi ... |
| CVE-2013-1674 | Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox E ... |
| CVE-2013-1672 | The Mozilla Maintenance Service in Mozilla Firefox before 21.0, Firefo ... |
| CVE-2013-1670 | The Chrome Object Wrapper (COW) implementation in Mozilla Firefox befo ... |
| CVE-2013-1669 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0801 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0800 | Integer signedness error in the pixman_fill_sse2 function in pixman-ss ... |
| CVE-2013-0796 | The WebGL subsystem in Mozilla Firefox before 20.0, Firefox ESR 17.x b ... |
| CVE-2013-0795 | The System Only Wrapper (SOW) implementation in Mozilla Firefox before ... |
| CVE-2013-0793 | Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbi ... |
| CVE-2013-0789 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0788 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0787 | Use-after-free vulnerability in the nsEditor::IsPreformatted function ... |
| CVE-2013-0784 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0783 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0782 | Heap-based buffer overflow in the nsSaveAsCharset::DoCharsetConversion ... |
| CVE-2013-0781 | Use-after-free vulnerability in the nsPrintEngine::CommonPrint functio ... |
| CVE-2013-0780 | Use-after-free vulnerability in the nsOverflowContinuationTracker::Fin ... |
| CVE-2013-0779 | The nsCodingStateMachine::NextState function in Mozilla Firefox before ... |
| CVE-2013-0778 | The ClusterIterator::NextCluster function in Mozilla Firefox before 19 ... |
| CVE-2013-0777 | Use-after-free vulnerability in the nsDisplayBoxShadowOuter::Paint fun ... |
| CVE-2013-0776 | Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbi ... |
| CVE-2013-0775 | Use-after-free vulnerability in the nsImageLoadingContent::OnStopConta ... |
| CVE-2013-0774 | Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbi ... |
| CVE-2013-0773 | The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) implemen ... |
| CVE-2013-0772 | The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, ... |
| CVE-2013-0771 | Heap-based buffer overflow in the gfxTextRun::ShrinkToLigatureBoundari ... |
| CVE-2013-0770 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0769 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0768 | Stack-based buffer overflow in the Canvas implementation in Mozilla Fi ... |
| CVE-2013-0767 | The nsSVGPathElement::GetPathLengthScale function in Mozilla Firefox b ... |
| CVE-2013-0766 | Use-after-free vulnerability in the ~nsHTMLEditRules implementation in ... |
| CVE-2013-0765 | Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey ... |
| CVE-2013-0764 | The nsSOCKSSocketInfo::ConnectToProxy function in Mozilla Firefox befo ... |
| CVE-2013-0763 | Use-after-free vulnerability in Mozilla Firefox before 18.0, Firefox E ... |
| CVE-2013-0762 | Use-after-free vulnerability in the imgRequest::OnStopFrame function i ... |
| CVE-2013-0761 | Use-after-free vulnerability in the mozilla::TrackUnionStream::EndTrac ... |
| CVE-2013-0760 | Buffer overflow in the CharDistributionAnalysis::HandleOneChar functio ... |
| CVE-2013-0759 | Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ... |
| CVE-2013-0758 | Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ... |
| CVE-2013-0757 | The Chrome Object Wrapper (COW) implementation in Mozilla Firefox befo ... |
| CVE-2013-0756 | Use-after-free vulnerability in the obj_toSource function in Mozilla F ... |
| CVE-2013-0755 | Use-after-free vulnerability in the mozVibrate implementation in the V ... |
| CVE-2013-0754 | Use-after-free vulnerability in the ListenerManager implementation in ... |
| CVE-2013-0753 | Use-after-free vulnerability in the serializeToStream implementation i ... |
| CVE-2013-0752 | Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbi ... |
| CVE-2013-0751 | Mozilla Firefox before 18.0 on Android and SeaMonkey before 2.15 do no ... |
| CVE-2013-0750 | Integer overflow in the JavaScript implementation in Mozilla Firefox b ... |
| CVE-2013-0749 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2013-0748 | The XBL.__proto__.toString implementation in Mozilla Firefox before 18 ... |
| CVE-2013-0747 | The gPluginHandler.handleEvent function in the plugin handler in Mozil ... |
| CVE-2013-0746 | Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ... |
| CVE-2013-0745 | The AutoWrapperChanger class in Mozilla Firefox before 18.0, Firefox E ... |
| CVE-2013-0744 | Use-after-free vulnerability in the TableBackgroundPainter::TableBackg ... |
| CVE-2012-5843 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-5842 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-5841 | Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderb ... |
| CVE-2012-5840 | Use-after-free vulnerability in the nsTextEditorState::PrepareEditor f ... |
| CVE-2012-5839 | Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsCl ... |
| CVE-2012-5838 | The copyTexImage2D implementation in the WebGL subsystem in Mozilla Fi ... |
| CVE-2012-5836 | Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey be ... |
| CVE-2012-5835 | Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0 ... |
| CVE-2012-5833 | The texImage2D implementation in the WebGL subsystem in Mozilla Firefo ... |
| CVE-2012-5830 | Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox E ... |
| CVE-2012-5829 | Heap-based buffer overflow in the nsWindow::OnExposeEvent function in ... |
| CVE-2012-5354 | Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey be ... |
| CVE-2012-4218 | Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::S ... |
| CVE-2012-4217 | Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdat ... |
| CVE-2012-4216 | Use-after-free vulnerability in the gfxFont::GetFontEntry function in ... |
| CVE-2012-4215 | Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEv ... |
| CVE-2012-4214 | Use-after-free vulnerability in the nsTextEditorState::PrepareEditor f ... |
| CVE-2012-4213 | Use-after-free vulnerability in the nsEditor::FindNextLeafNode functio ... |
| CVE-2012-4212 | Use-after-free vulnerability in the XPCWrappedNative::Mark function in ... |
| CVE-2012-4209 | Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderb ... |
| CVE-2012-4208 | The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunder ... |
| CVE-2012-4207 | The HZ-GB-2312 character-set implementation in Mozilla Firefox before ... |
| CVE-2012-4205 | Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey be ... |
| CVE-2012-4204 | The str_unescape function in the JavaScript engine in Mozilla Firefox ... |
| CVE-2012-4202 | Heap-based buffer overflow in the image::RasterImage::DrawFrameTo func ... |
| CVE-2012-4201 | The evalInSandbox implementation in Mozilla Firefox before 17.0, Firef ... |
| CVE-2012-4196 | Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunde ... |
| CVE-2012-4195 | The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Fi ... |
| CVE-2012-4194 | Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunde ... |
| CVE-2012-4193 | Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunder ... |
| CVE-2012-4192 | Mozilla Firefox 16.0, Thunderbird 16.0, and SeaMonkey 2.13 allow remot ... |
| CVE-2012-4188 | Heap-based buffer overflow in the Convolve3x3 function in Mozilla Fire ... |
| CVE-2012-4187 | Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ... |
| CVE-2012-4186 | Heap-based buffer overflow in the nsWaveReader::DecodeAudioData functi ... |
| CVE-2012-4185 | Buffer overflow in the nsCharTraits::length function in Mozilla Firefo ... |
| CVE-2012-4184 | The Chrome Object Wrapper (COW) implementation in Mozilla Firefox befo ... |
| CVE-2012-4183 | Use-after-free vulnerability in the DOMSVGTests::GetRequiredFeatures f ... |
| CVE-2012-4182 | Use-after-free vulnerability in the nsTextEditRules::WillInsert functi ... |
| CVE-2012-4181 | Use-after-free vulnerability in the nsSMILAnimationController::DoSampl ... |
| CVE-2012-4180 | Heap-based buffer overflow in the nsHTMLEditor::IsPrevCharInNodeWhites ... |
| CVE-2012-4179 | Use-after-free vulnerability in the nsHTMLCSSUtils::CreateCSSPropertyT ... |
| CVE-2012-3995 | The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, Fir ... |
| CVE-2012-3994 | Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ... |
| CVE-2012-3993 | The Chrome Object Wrapper (COW) implementation in Mozilla Firefox befo ... |
| CVE-2012-3992 | Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ... |
| CVE-2012-3991 | Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ... |
| CVE-2012-3990 | Use-after-free vulnerability in the IME State Manager implementation i ... |
| CVE-2012-3989 | Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey be ... |
| CVE-2012-3988 | Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox E ... |
| CVE-2012-3986 | Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ... |
| CVE-2012-3985 | Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey be ... |
| CVE-2012-3984 | Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey be ... |
| CVE-2012-3983 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-3982 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-3980 | The web console in Mozilla Firefox before 15.0, Firefox ESR 10.x befor ... |
| CVE-2012-3978 | The nsLocation::CheckURL function in Mozilla Firefox before 15.0, Fire ... |
| CVE-2012-3975 | The DOMParser component in Mozilla Firefox before 15.0, Thunderbird be ... |
| CVE-2012-3972 | The format-number functionality in the XSLT implementation in Mozilla ... |
| CVE-2012-3971 | Summer Institute of Linguistics (SIL) Graphite 2, as used in Mozilla F ... |
| CVE-2012-3970 | Use-after-free vulnerability in the nsTArray_base::Length function in ... |
| CVE-2012-3969 | Integer overflow in the nsSVGFEMorphologyElement::Filter function in M ... |
| CVE-2012-3968 | Use-after-free vulnerability in the WebGL implementation in Mozilla Fi ... |
| CVE-2012-3967 | The WebGL implementation in Mozilla Firefox before 15.0, Firefox ESR 1 ... |
| CVE-2012-3966 | Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbi ... |
| CVE-2012-3964 | Use-after-free vulnerability in the gfxTextRun::GetUserData function i ... |
| CVE-2012-3963 | Use-after-free vulnerability in the js::gc::MapAllocToTraceKind functi ... |
| CVE-2012-3962 | Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbi ... |
| CVE-2012-3961 | Use-after-free vulnerability in the RangeData implementation in Mozill ... |
| CVE-2012-3960 | Use-after-free vulnerability in the mozSpellChecker::SetCurrentDiction ... |
| CVE-2012-3959 | Use-after-free vulnerability in the nsRangeUpdater::SelAdjDeleteNode f ... |
| CVE-2012-3958 | Use-after-free vulnerability in the nsHTMLEditRules::DeleteNonTableEle ... |
| CVE-2012-3957 | Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function ... |
| CVE-2012-3956 | Use-after-free vulnerability in the MediaStreamGraphThreadRunnable::Ru ... |
| CVE-2012-1976 | Use-after-free vulnerability in the nsHTMLSelectElement::SubmitNamesVa ... |
| CVE-2012-1975 | Use-after-free vulnerability in the PresShell::CompleteMove function i ... |
| CVE-2012-1974 | Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore fun ... |
| CVE-2012-1973 | Use-after-free vulnerability in the nsObjectLoadingContent::LoadObject ... |
| CVE-2012-1972 | Use-after-free vulnerability in the nsHTMLEditor::CollapseAdjacentText ... |
| CVE-2012-1970 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-1967 | Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thun ... |
| CVE-2012-1964 | The certificate-warning functionality in browser/components/certerror/ ... |
| CVE-2012-1963 | The Content Security Policy (CSP) functionality in Mozilla Firefox 4.x ... |
| CVE-2012-1962 | Use-after-free vulnerability in the JSDependentString::undepend functi ... |
| CVE-2012-1961 | Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thun ... |
| CVE-2012-1959 | Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thun ... |
| CVE-2012-1958 | Use-after-free vulnerability in the nsGlobalWindow::PageHidden functio ... |
| CVE-2012-1957 | An unspecified parser-utility class in Mozilla Firefox 4.x through 13. ... |
| CVE-2012-1956 | Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey be ... |
| CVE-2012-1955 | Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thun ... |
| CVE-2012-1954 | Use-after-free vulnerability in the nsDocument::AdoptNode function in ... |
| CVE-2012-1953 | The ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox ... |
| CVE-2012-1952 | The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x through ... |
| CVE-2012-1951 | Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased ... |
| CVE-2012-1950 | The drag-and-drop implementation in Mozilla Firefox 4.x through 13.0 a ... |
| CVE-2012-1948 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-1947 | Heap-based buffer overflow in the utf16_to_isolatin1 function in Mozil ... |
| CVE-2012-1946 | Use-after-free vulnerability in the nsINode::ReplaceOrInsertBefore fun ... |
| CVE-2012-1945 | Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thun ... |
| CVE-2012-1944 | The Content Security Policy (CSP) implementation in Mozilla Firefox 4. ... |
| CVE-2012-1941 | Heap-based buffer overflow in the nsHTMLReflowState::CalculateHypothet ... |
| CVE-2012-1940 | Use-after-free vulnerability in the nsFrameList::FirstChild function i ... |
| CVE-2012-1939 | jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ... |
| CVE-2012-1937 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0479 | Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thun ... |
| CVE-2012-0478 | The texImage2D implementation in the WebGL subsystem in Mozilla Firefo ... |
| CVE-2012-0477 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2012-0475 | Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and Se ... |
| CVE-2012-0474 | Cross-site scripting (XSS) vulnerability in the docshell implementatio ... |
| CVE-2012-0473 | The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x ... |
| CVE-2012-0472 | The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, F ... |
| CVE-2012-0471 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x throug ... |
| CVE-2012-0470 | Heap-based buffer overflow in the nsSVGFEDiffuseLightingElement::Light ... |
| CVE-2012-0469 | Use-after-free vulnerability in the mozilla::dom::indexedDB::IDBKeyRan ... |
| CVE-2012-0468 | The browser engine in Mozilla Firefox 4.x through 11.0, Thunderbird 5. ... |
| CVE-2012-0467 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0464 | Use-after-free vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2012-0462 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0461 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0460 | Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thun ... |
| CVE-2012-0459 | The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x ... |
| CVE-2012-0458 | Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x b ... |
| CVE-2012-0457 | Use-after-free vulnerability in the nsSMILTimeValueSpec::ConvertBetwee ... |
| CVE-2012-0456 | The SVG Filters implementation in Mozilla Firefox before 3.6.28 and 4. ... |
| CVE-2012-0455 | Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x b ... |
| CVE-2012-0452 | Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Th ... |
| CVE-2012-0451 | CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Fire ... |
| CVE-2012-0450 | Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and ... |
| CVE-2012-0449 | Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ... |
| CVE-2012-0447 | Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaM ... |
| CVE-2012-0446 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2012-0445 | Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaM ... |
| CVE-2012-0444 | Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ... |
| CVE-2012-0442 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-3670 | Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before ... |
| CVE-2011-3650 | Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird befo ... |
| CVE-2011-3648 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6 ... |
| CVE-2011-3647 | The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird ... |
| CVE-2011-3232 | YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, a ... |
| CVE-2011-3079 | The Inter-process Communication (IPC) implementation in Google Chrome ... |
| CVE-2011-3062 | Off-by-one error in the OpenType Sanitizer in Google Chrome before 18. ... |
| CVE-2011-3000 | Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7. ... |
| CVE-2011-2999 | Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6. ... |
| CVE-2011-2998 | Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote ... |
| CVE-2011-2996 | Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x b ... |
| CVE-2011-2995 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2992 | The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, ... |
| CVE-2011-2991 | The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x bef ... |
| CVE-2011-2989 | The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x bef ... |
| CVE-2011-2988 | Buffer overflow in an unspecified string class in the WebGL shader imp ... |
| CVE-2011-2987 | Heap-based buffer overflow in Almost Native Graphics Layer Engine (ANG ... |
| CVE-2011-2986 | Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x bef ... |
| CVE-2011-2985 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2984 | Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3 ... |
| CVE-2011-2983 | Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, ... |
| CVE-2011-2982 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2981 | The event-management implementation in Mozilla Firefox before 3.6.20, ... |
| CVE-2011-2980 | Untrusted search path vulnerability in the ThinkPadSensor::Startup fun ... |
| CVE-2011-2605 | CRLF injection vulnerability in the nsCookieService::SetCookieStringIn ... |
| CVE-2011-2378 | The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird ... |
| CVE-2011-2377 | Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird befor ... |
| CVE-2011-2376 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2374 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2373 | Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x ... |
| CVE-2011-2372 | Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7. ... |
| CVE-2011-2371 | Integer overflow in the Array.reduceRight method in Mozilla Firefox be ... |
| CVE-2011-2370 | Mozilla Firefox before 5.0 does not properly enforce the whitelist for ... |
| CVE-2011-2365 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6 ... |
| CVE-2011-2364 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6 ... |
| CVE-2011-2363 | Use-after-free vulnerability in the nsSVGPointList::AppendElement func ... |
| CVE-2011-2362 | Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonke ... |
| CVE-2011-1187 | Google Chrome before 10.0.648.127 allows remote attackers to bypass th ... |
| CVE-2011-0085 | Use-after-free vulnerability in the nsXULCommandDispatcher function in ... |
| CVE-2011-0084 | The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox be ... |
| CVE-2011-0083 | Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem func ... |
| CVE-2011-0080 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0078 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0077 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0075 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0074 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0072 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0071 | Directory traversal vulnerability in Mozilla Firefox before 3.5.19 and ... |
| CVE-2011-0070 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0069 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2011-0066 | Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6. ... |
| CVE-2011-0065 | Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6. ... |
| CVE-2011-0059 | Cross-site request forgery (CSRF) vulnerability in Mozilla Firefox bef ... |
| CVE-2011-0058 | Buffer overflow in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6. ... |
| CVE-2011-0057 | Use-after-free vulnerability in the Web Workers implementation in Mozi ... |
| CVE-2011-0056 | Buffer overflow in the JavaScript engine in Mozilla Firefox before 3.5 ... |
| CVE-2011-0055 | Use-after-free vulnerability in the JSON.stringify method in js3250.dl ... |
| CVE-2011-0054 | Buffer overflow in the JavaScript engine in Mozilla Firefox before 3.5 ... |
| CVE-2011-0053 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0051 | Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey b ... |
| CVE-2010-3778 | Unspecified vulnerability in Mozilla Firefox 3.5.x before 3.5.16, Thun ... |
| CVE-2010-3776 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3769 | The line-breaking implementation in Mozilla Firefox before 3.5.16 and ... |
| CVE-2010-3768 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird bef ... |
| CVE-2010-3765 | Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunder ... |
| CVE-2010-3183 | The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox bef ... |
| CVE-2010-3182 | A certain application-launch script in Mozilla Firefox before 3.5.14 a ... |
| CVE-2010-3180 | Use-after-free vulnerability in the nsBarProp function in Mozilla Fire ... |
| CVE-2010-3179 | Stack-based buffer overflow in the text-rendering functionality in Moz ... |
| CVE-2010-3178 | Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird bef ... |
| CVE-2010-3174 | Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5 ... |
| CVE-2010-3169 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3168 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird befo ... |
| CVE-2010-3167 | The nsTreeContentView function in Mozilla Firefox before 3.5.12 and 3. ... |
| CVE-2010-3166 | Heap-based buffer overflow in the nsTextFrameUtils::TransformText func ... |
| CVE-2010-2769 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.5 ... |
| CVE-2010-2768 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird befo ... |
| CVE-2010-2767 | The navigator.plugins implementation in Mozilla Firefox before 3.5.12 ... |
| CVE-2010-2766 | The normalizeDocument function in Mozilla Firefox before 3.5.12 and 3. ... |
| CVE-2010-2765 | Integer overflow in the FRAMESET element implementation in Mozilla Fir ... |
| CVE-2010-2764 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird befo ... |
| CVE-2010-2763 | The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ... |
| CVE-2010-2760 | Use-after-free vulnerability in the nsTreeSelection function in Mozill ... |
| CVE-2010-2754 | dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 an ... |
| CVE-2010-2753 | Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x befo ... |
| CVE-2010-2752 | Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5 ... |
| CVE-2010-1585 | The nsIScriptableUnescapeHTML.parseFragment method in the ParanoidFrag ... |
| CVE-2010-1213 | The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3. ... |
| CVE-2010-1212 | js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x bef ... |
| CVE-2010-1211 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-1205 | Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before ... |
| CVE-2010-1199 | Integer overflow in the XSLT node sorting implementation in Mozilla Fi ... |
| CVE-2010-1196 | Integer overflow in the nsGenericDOMDataNode::SetTextInternal function ... |
| CVE-2010-0654 | Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbir ... |
| CVE-2010-0182 | The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6 ... |
| CVE-2010-0176 | Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3. ... |
| CVE-2010-0175 | Use-after-free vulnerability in the nsTreeSelection implementation in ... |
| CVE-2010-0174 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-0173 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-0171 | Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x bef ... |
| CVE-2010-0169 | The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoade ... |
| CVE-2010-0167 | The browser engine in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x befor ... |
| CVE-2010-0163 | Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 proces ... |
| CVE-2010-0159 | The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x be ... |
| CVE-2009-4629 | Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other appl ... |
| CVE-2009-3075 | Multiple unspecified vulnerabilities in the JavaScript engine in Mozil ... |
| CVE-2009-3072 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2009-2463 | Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base6 ... |
| CVE-2009-2408 | Mozilla Network Security Services (NSS) before 3.12.3, Firefox before ... |
| CVE-2009-2404 | Heap-based buffer overflow in a regular-expression parser in Mozilla N ... |
| CVE-2009-2210 | Mozilla Thunderbird before 2.0.0.22 and SeaMonkey before 1.1.17 allow ... |
| CVE-2009-2061 | Mozilla Firefox before 3.0.10 processes a 3xx HTTP CONNECT response be ... |
| CVE-2009-1841 | js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3 ... |
| CVE-2009-1838 | The garbage-collection implementation in Mozilla Firefox before 3.0.11 ... |
| CVE-2009-1836 | Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMon ... |
| CVE-2009-1832 | Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMon ... |
| CVE-2009-1571 | Use-after-free vulnerability in the HTML parser in Mozilla Firefox 3.0 ... |
| CVE-2009-1392 | The browser engine in Mozilla Firefox 3 before 3.0.11, Thunderbird bef ... |
| CVE-2009-1307 | The view-source: URI implementation in Mozilla Firefox before 3.0.9, T ... |
| CVE-2009-1303 | The browser engine in Mozilla Firefox before 3.0.9, Thunderbird before ... |
| CVE-2009-1302 | The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird be ... |
| CVE-2009-0776 | nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0. ... |
| CVE-2009-0774 | The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ... |
| CVE-2009-0773 | The JavaScript engine in Mozilla Firefox before 3.0.7, Thunderbird bef ... |
| CVE-2009-0772 | The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ... |
| CVE-2009-0771 | The layout engine in Mozilla Firefox before 3.0.7, Thunderbird before ... |
| CVE-2009-0652 | The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox ... |
| CVE-2009-0353 | Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunder ... |
| CVE-2009-0352 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0 ... |
| CVE-2009-0040 | The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before ... |
| CVE-2008-6961 | mailnews in Mozilla Thunderbird before 2.0.0.18 and SeaMonkey before 1 ... |
| CVE-2008-5512 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0 ... |
| CVE-2008-5511 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5510 | The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0. ... |
| CVE-2008-5508 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5507 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5506 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5503 | The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.1 ... |
| CVE-2008-5502 | The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ... |
| CVE-2008-5501 | The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ... |
| CVE-2008-5500 | The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2 ... |
| CVE-2008-5052 | The AppendAttributeValue function in the JavaScript engine in Mozilla ... |
| CVE-2008-5024 | Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunder ... |
| CVE-2008-5022 | The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x befor ... |
| CVE-2008-5021 | nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.1 ... |
| CVE-2008-5018 | The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x ... |
| CVE-2008-5017 | Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Moz ... |
| CVE-2008-5016 | The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x ... |
| CVE-2008-5014 | jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0 ... |
| CVE-2008-5012 | Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, ... |
| CVE-2008-4582 | Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and ... |
| CVE-2008-4070 | Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.17 and ... |
| CVE-2008-4068 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 a ... |
| CVE-2008-4067 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 a ... |
| CVE-2008-4066 | Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows r ... |
| CVE-2008-4065 | Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird befo ... |
| CVE-2008-4062 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ... |
| CVE-2008-4061 | Integer overflow in the MathML component in Mozilla Firefox before 2.0 ... |
| CVE-2008-4060 | Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird befo ... |
| CVE-2008-4059 | The XPConnect component in Mozilla Firefox before 2.0.0.17 allows remo ... |
| CVE-2008-4058 | The XPConnect component in Mozilla Firefox before 2.0.0.17 and 3.x bef ... |
| CVE-2008-3835 | The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox befor ... |
| CVE-2008-2811 | The block reflow implementation in Mozilla Firefox before 2.0.0.15, Th ... |
| CVE-2008-2809 | Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonk ... |
| CVE-2008-2807 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not pro ... |
| CVE-2008-2803 | The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox befor ... |
| CVE-2008-2802 | Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and ... |
| CVE-2008-2799 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ... |
| CVE-2008-2798 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ... |
| CVE-2008-2785 | Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird befo ... |
| CVE-2008-1380 | The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird ... |
| CVE-2008-1237 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ... |
| CVE-2008-1236 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.1 ... |
| CVE-2008-1235 | Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ... |
| CVE-2008-1234 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0 ... |
| CVE-2008-1233 | Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderb ... |
| CVE-2008-0594 | Mozilla Firefox before 2.0.0.12 does not always display a web forgery ... |
| CVE-2008-0593 | Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and Se ... |
| CVE-2008-0592 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows user ... |
| CVE-2008-0591 | Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does n ... |
| CVE-2008-0419 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows remo ... |
| CVE-2008-0418 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, ... |
| CVE-2008-0417 | CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows ... |
| CVE-2008-0416 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2008-0415 | Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaM ... |
| CVE-2008-0414 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows user ... |
| CVE-2008-0413 | The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird ... |
| CVE-2008-0412 | The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird bef ... |
| CVE-2008-0304 | Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.12 and ... |
| CVE-2008-0016 | Stack-based buffer overflow in the URL parsing implementation in Mozil ... |
| CVE-2007-5340 | Multiple vulnerabilities in the Javascript engine in Mozilla Firefox b ... |
| CVE-2007-5339 | Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbir ... |
| CVE-2007-5045 | Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, ... |
| CVE-2007-4841 | Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMon ... |
| CVE-2007-4039 | Argument injection vulnerability involving Mozilla, when certain URIs ... |
| CVE-2007-3845 | Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x be ... |
| CVE-2007-3844 | Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and ... |
| CVE-2007-3735 | Multiple unspecified vulnerabilities in the JavaScript engine in Mozil ... |
| CVE-2007-3734 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2007-3670 | Argument injection vulnerability in Microsoft Internet Explorer, when ... |
| CVE-2007-2868 | Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox ... |
| CVE-2007-2867 | Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5. ... |
| CVE-2007-1558 | The APOP protocol allows remote attackers to guess the first 3 charact ... |
| CVE-2007-1282 | Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey ... |
| CVE-2007-0777 | The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x befor ... |
| CVE-2007-0776 | Heap-based buffer overflow in the _cairo_pen_init function in Mozilla ... |
| CVE-2007-0775 | Multiple unspecified vulnerabilities in the layout engine in Mozilla F ... |
| CVE-2007-0009 | Stack-based buffer overflow in the SSLv2 support in Mozilla Network Se ... |
| CVE-2007-0008 | Integer underflow in the SSLv2 support in Mozilla Network Security Ser ... |
| CVE-2006-6505 | Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5 ... |
| CVE-2006-6504 | Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonke ... |
| CVE-2006-6503 | Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird ... |
| CVE-2006-6502 | Use-after-free vulnerability in the LiveConnect bridge code for Mozill ... |
| CVE-2006-6501 | Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ... |
| CVE-2006-6500 | Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5. ... |
| CVE-2006-6499 | The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x befo ... |
| CVE-2006-6498 | Multiple unspecified vulnerabilities in the JavaScript engine for Mozi ... |
| CVE-2006-6497 | Multiple unspecified vulnerabilities in the layout engine for Mozilla ... |
| CVE-2006-5748 | Multiple unspecified vulnerabilities in the JavaScript engine in Mozil ... |
| CVE-2006-5747 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbi ... |
| CVE-2006-5464 | Multiple unspecified vulnerabilities in the layout engine in Mozilla F ... |
| CVE-2006-5463 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbi ... |
| CVE-2006-5462 | Mozilla Network Security Service (NSS) library before 3.11.3, as used ... |