| Bug | Description |
|---|
| CVE-2005-2414 | Race condition in the xpcom library, as used by web browsers such as ... |
| CVE-2005-4874 | The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE ... |
| CVE-2006-0496 | Cross-site scripting (XSS) vulnerability in Mozilla 1.7.12 and ... |
| CVE-2006-2894 | Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, ... |
| CVE-2006-4310 | Mozilla Firefox 1.5.0.6 allows remote attackers to cause a denial of ... |
| CVE-2006-5462 | Mozilla Network Security Service (NSS) library before 3.11.3, as used ... |
| CVE-2006-5463 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ... |
| CVE-2006-5464 | Multiple unspecified vulnerabilities in the layout engine in Mozilla ... |
| CVE-2006-5747 | Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ... |
| CVE-2006-5748 | Multiple unspecified vulnerabilities in the JavaScript engine in ... |
| CVE-2006-6077 | The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and ... |
| CVE-2006-6497 | Multiple unspecified vulnerabilities in the layout engine for Mozilla ... |
| CVE-2006-6498 | Multiple unspecified vulnerabilities in the JavaScript engine for ... |
| CVE-2006-6499 | The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ... |
| CVE-2006-6500 | Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, ... |
| CVE-2006-6501 | Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ... |
| CVE-2006-6502 | Use-after-free vulnerability in the LiveConnect bridge code for ... |
| CVE-2006-6503 | Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird ... |
| CVE-2006-6504 | Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and ... |
| CVE-2006-6506 | The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends ... |
| CVE-2006-6507 | Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass ... |
| CVE-2006-6585 | The Extensions manager in Mozilla Firefox 2.0 does not properly ... |
| CVE-2006-6971 | Mozilla Firefox 2.0, possibly only when running on Windows, allows ... |
| CVE-2007-0008 | Integer underflow in the SSLv2 support in Mozilla Network Security ... |
| CVE-2007-0009 | Stack-based buffer overflow in the SSLv2 support in Mozilla Network ... |
| CVE-2007-0775 | Multiple unspecified vulnerabilities in the layout engine in Mozilla ... |
| CVE-2007-0776 | Heap-based buffer overflow in the _cairo_pen_init function in Mozilla ... |
| CVE-2007-0777 | The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x ... |
| CVE-2007-0778 | The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x ... |
| CVE-2007-0779 | GUI overlay vulnerability in Mozilla Firefox 1.5.x before 1.5.0.10 and ... |
| CVE-2007-0780 | browser.js in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before ... |
| CVE-2007-0800 | Cross-zone vulnerability in Mozilla Firefox 1.5.0.9 considers blocked ... |
| CVE-2007-0801 | The nsExternalAppHandler::SetUpTempFile function in Mozilla Firefox ... |
| CVE-2007-0802 | Mozilla Firefox 2.0.0.1 allows remote attackers to bypass the Phishing ... |
| CVE-2007-0981 | Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x ... |
| CVE-2007-0994 | A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x ... |
| CVE-2007-0995 | Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey ... |
| CVE-2007-0996 | The child frames in Mozilla Firefox before 1.5.0.10 and 2.x before ... |
| CVE-2007-1004 | Mozilla Firefox might allow remote attackers to conduct spoofing and ... |
| CVE-2007-1092 | Mozilla Firefox 1.5.0.9 and 2.0.0.1, and SeaMonkey before 1.0.8 allow ... |
| CVE-2007-1095 | Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not ... |
| CVE-2007-1116 | The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI ... |
| CVE-2007-1362 | Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ... |
| CVE-2007-1562 | The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and ... |
| CVE-2007-1762 | Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs ... |
| CVE-2007-2292 | CRLF injection vulnerability in the Digest Authentication support for ... |
| CVE-2007-2867 | Multiple vulnerabilities in the layout engine for Mozilla Firefox ... |
| CVE-2007-2868 | Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox ... |
| CVE-2007-2869 | The form autocomplete feature in Mozilla Firefox 1.5.x before ... |
| CVE-2007-2870 | Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ... |
| CVE-2007-2871 | Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ... |
| CVE-2007-3072 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.4 on ... |
| CVE-2007-3074 | Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read ... |
| CVE-2007-3089 | Mozilla Firefox before 2.0.0.5 does not prevent use of document.write ... |
| CVE-2007-3285 | Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote ... |
| CVE-2007-3511 | The focus handling for the onkeydown event in Mozilla Firefox ... |
| CVE-2007-3656 | Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not ... |
| CVE-2007-3670 | Argument injection vulnerability in Microsoft Internet Explorer, when ... |
| CVE-2007-3734 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2007-3735 | Multiple unspecified vulnerabilities in the JavaScript engine in ... |
| CVE-2007-3736 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ... |
| CVE-2007-3737 | Mozilla Firefox before 2.0.0.5 allows remote attackers to execute ... |
| CVE-2007-3738 | Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 ... |
| CVE-2007-3844 | Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and ... |
| CVE-2007-3845 | Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x ... |
| CVE-2007-4038 | Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, ... |
| CVE-2007-4041 | Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 ... |
| CVE-2007-4841 | Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and ... |
| CVE-2007-4879 | Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey before 1.1.9, ... |
| CVE-2007-5045 | Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, ... |
| CVE-2007-5334 | Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the ... |
| CVE-2007-5335 | Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain ... |
| CVE-2007-5337 | Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when ... |
| CVE-2007-5338 | Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote ... |
| CVE-2007-5339 | Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, ... |
| CVE-2007-5340 | Multiple vulnerabilities in the Javascript engine in Mozilla Firefox ... |
| CVE-2007-5414 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ... |
| CVE-2007-5691 | ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows remote FTP servers ... |
| CVE-2007-5947 | The jar protocol handler in Mozilla Firefox before 2.0.0.10 and ... |
| CVE-2007-5959 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2007-5960 | Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 sets the ... |
| CVE-2007-6589 | The jar protocol handler in Mozilla Firefox before 2.0.0.10 and ... |
| CVE-2008-0016 | Stack-based buffer overflow in the URL parsing implementation in ... |
| CVE-2008-0017 | The http-index-format MIME type parser (nsDirIndexParser) in Firefox ... |
| CVE-2008-0367 | Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when ... |
| CVE-2008-0412 | The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird ... |
| CVE-2008-0413 | The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird ... |
| CVE-2008-0414 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ... |
| CVE-2008-0415 | Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and ... |
| CVE-2008-0416 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2008-0417 | CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows ... |
| CVE-2008-0418 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, ... |
| CVE-2008-0419 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ... |
| CVE-2008-0420 | modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox ... |
| CVE-2008-0591 | Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does ... |
| CVE-2008-0592 | Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ... |
| CVE-2008-0593 | Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and ... |
| CVE-2008-0594 | Mozilla Firefox before 2.0.0.12 does not always display a web forgery ... |
| CVE-2008-1233 | Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, ... |
| CVE-2008-1234 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ... |
| CVE-2008-1235 | Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, ... |
| CVE-2008-1236 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2008-1237 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2008-1238 | Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when ... |
| CVE-2008-1240 | LiveConnect in Mozilla Firefox before 2.0.0.13 and SeaMonkey before ... |
| CVE-2008-1241 | GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and ... |
| CVE-2008-1380 | The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird ... |
| CVE-2008-2785 | Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird ... |
| CVE-2008-2798 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2008-2799 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2008-2800 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow ... |
| CVE-2008-2801 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ... |
| CVE-2008-2802 | Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and ... |
| CVE-2008-2803 | The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox ... |
| CVE-2008-2805 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow ... |
| CVE-2008-2806 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 on Mac OS ... |
| CVE-2008-2807 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ... |
| CVE-2008-2808 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ... |
| CVE-2008-2809 | Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, ... |
| CVE-2008-2810 | Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ... |
| CVE-2008-2811 | The block reflow implementation in Mozilla Firefox before 2.0.0.15, ... |
| CVE-2008-2933 | Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' ... |
| CVE-2008-2934 | Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to ... |
| CVE-2008-3198 | Mozilla Firefox 3.x before 3.0.1 allows remote attackers to inject ... |
| CVE-2008-3835 | The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox ... |
| CVE-2008-3836 | feedWriter in Mozilla Firefox before 2.0.0.17 allows remote attackers ... |
| CVE-2008-3837 | Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey ... |
| CVE-2008-4058 | The XPConnect component in Mozilla Firefox before 2.0.0.17 and 3.x ... |
| CVE-2008-4059 | The XPConnect component in Mozilla Firefox before 2.0.0.17 allows ... |
| CVE-2008-4060 | Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird ... |
| CVE-2008-4061 | Integer overflow in the MathML component in Mozilla Firefox before ... |
| CVE-2008-4062 | Multiple unspecified vulnerabilities in Mozilla Firefox before ... |
| CVE-2008-4063 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ... |
| CVE-2008-4064 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ... |
| CVE-2008-4065 | Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird ... |
| CVE-2008-4066 | Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows ... |
| CVE-2008-4067 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 ... |
| CVE-2008-4068 | Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 ... |
| CVE-2008-4069 | The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey ... |
| CVE-2008-4582 | Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and ... |
| CVE-2008-4723 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2008-5012 | Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, ... |
| CVE-2008-5013 | Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do ... |
| CVE-2008-5014 | jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before ... |
| CVE-2008-5015 | Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: ... |
| CVE-2008-5016 | The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x ... |
| CVE-2008-5017 | Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in ... |
| CVE-2008-5018 | The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x ... |
| CVE-2008-5019 | The session restore feature in Mozilla Firefox 3.x before 3.0.4 and ... |
| CVE-2008-5021 | nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before ... |
| CVE-2008-5022 | The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x ... |
| CVE-2008-5023 | Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey ... |
| CVE-2008-5024 | Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, ... |
| CVE-2008-5052 | The AppendAttributeValue function in the JavaScript engine in Mozilla ... |
| CVE-2008-5500 | The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before ... |
| CVE-2008-5501 | The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ... |
| CVE-2008-5502 | The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ... |
| CVE-2008-5503 | The loadBindingDocument function in Mozilla Firefox 2.x before ... |
| CVE-2008-5504 | Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run ... |
| CVE-2008-5505 | Mozilla Firefox 3.x before 3.0.5 allows remote attackers to bypass ... |
| CVE-2008-5506 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5507 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5508 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5510 | The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before ... |
| CVE-2008-5511 | Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ... |
| CVE-2008-5512 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ... |
| CVE-2008-5513 | Unspecified vulnerability in the session-restore feature in Mozilla ... |
| CVE-2009-0352 | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ... |
| CVE-2009-0353 | Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, ... |
| CVE-2009-0354 | Cross-domain vulnerability in js/src/jsobj.cpp in Mozilla Firefox 3.x ... |
| CVE-2009-0355 | components/sessionstore/src/nsSessionStore.js in Mozilla Firefox ... |
| CVE-2009-0356 | Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the ... |
| CVE-2009-0357 | Mozilla Firefox before 3.0.6 and SeaMonkey before 1.1.15 do not ... |
| CVE-2009-0358 | Mozilla Firefox 3.x before 3.0.6 does not properly implement the (1) ... |
| CVE-2009-0772 | The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ... |
| CVE-2009-0774 | The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ... |
| CVE-2009-0776 | nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before ... |
| CVE-2009-0777 | Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and ... |
| CVE-2009-1310 | Cross-site scripting (XSS) vulnerability in the MozSearch plugin ... |
| CVE-2009-2535 | Mozilla Firefox before 2.0.0.19 and 3.x before 3.0.5, SeaMonkey, and ... |
| CVE-2009-3079 | Unspecified vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x ... |
| CVE-2009-3385 | The mail component in Mozilla SeaMonkey before 1.1.19 does not ... |
| CVE-2009-3388 | liboggplay in Mozilla Firefox 3.5.x before 3.5.6 and SeaMonkey before ... |
| CVE-2009-3389 | Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used ... |
| CVE-2009-3560 | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, ... |
| CVE-2009-3720 | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ... |
| CVE-2009-3979 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2009-3980 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2009-3981 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2009-3983 | Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ... |
| CVE-2009-3984 | Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ... |
| CVE-2009-3985 | Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ... |
| CVE-2009-3986 | Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ... |
| CVE-2009-3988 | Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and ... |
| CVE-2009-4629 | Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other ... |
| CVE-2009-4630 | Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, ... |
| CVE-2010-0159 | The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x ... |
| CVE-2010-0160 | The Web Worker functionality in Mozilla Firefox 3.0.x before 3.0.18 ... |
| CVE-2010-0161 | The nsAuthSSPI::Unwrap function in extensions/auth/nsAuthSSPI.cpp in ... |
| CVE-2010-0162 | Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and ... |
| CVE-2010-0164 | Use-after-free vulnerability in the ... |
| CVE-2010-0165 | The TraceRecorder::traverseScopeChain function in js/src/jstracer.cpp ... |
| CVE-2010-0166 | The gfxTextRun::SanitizeGlyphRuns function in ... |
| CVE-2010-0167 | The browser engine in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x ... |
| CVE-2010-0168 | The nsDocument::MaybePreLoadImage function in ... |
| CVE-2010-0169 | The CSSLoaderImpl::DoSheetComplete function in ... |
| CVE-2010-0170 | Mozilla Firefox 3.6 before 3.6.2 does not offer plugins the expected ... |
| CVE-2010-0171 | Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x ... |
| CVE-2010-0172 | toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the ... |
| CVE-2010-0173 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-0174 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-0175 | Use-after-free vulnerability in the nsTreeSelection implementation in ... |
| CVE-2010-0176 | Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ... |
| CVE-2010-0177 | Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ... |
| CVE-2010-0178 | Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ... |
| CVE-2010-0179 | Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.8, and SeaMonkey ... |
| CVE-2010-0181 | Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, and SeaMonkey ... |
| CVE-2010-0182 | The XMLDocument::load function in Mozilla Firefox before 3.5.9 and ... |
| CVE-2010-0183 | Use-after-free vulnerability in the nsCycleCollector::MarkRoots ... |
| CVE-2010-0654 | Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, ... |
| CVE-2010-1196 | Integer overflow in the nsGenericDOMDataNode::SetTextInternal function ... |
| CVE-2010-1197 | Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and ... |
| CVE-2010-1198 | Use-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.10 ... |
| CVE-2010-1199 | Integer overflow in the XSLT node sorting implementation in Mozilla ... |
| CVE-2010-1200 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-1201 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2010-1202 | Multiple unspecified vulnerabilities in the JavaScript engine in ... |
| CVE-2010-1203 | The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow ... |
| CVE-2010-1206 | The startDocumentLoad function in browser/base/content/browser.js in ... |
| CVE-2010-1207 | Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not ... |
| CVE-2010-1209 | Use-after-free vulnerability in the NodeIterator implementation in ... |
| CVE-2010-1210 | intl/uconv/util/nsUnicodeDecodeHelper.cpp in Mozilla Firefox before ... |
| CVE-2010-1211 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-1212 | js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x ... |
| CVE-2010-1213 | The importScripts Web Worker method in Mozilla Firefox 3.5.x before ... |
| CVE-2010-1214 | Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x ... |
| CVE-2010-1215 | Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 ... |
| CVE-2010-1585 | The nsIScriptableUnescapeHTML.parseFragment method in the ... |
| CVE-2010-2751 | The nsDocShell::OnRedirectStateChange function in ... |
| CVE-2010-2752 | Integer overflow in an array class in Mozilla Firefox 3.5.x before ... |
| CVE-2010-2753 | Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x ... |
| CVE-2010-2754 | dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 ... |
| CVE-2010-2755 | layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not ... |
| CVE-2010-2760 | Use-after-free vulnerability in the nsTreeSelection function in ... |
| CVE-2010-2762 | The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ... |
| CVE-2010-2763 | The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ... |
| CVE-2010-2764 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ... |
| CVE-2010-2765 | Integer overflow in the FRAMESET element implementation in Mozilla ... |
| CVE-2010-2766 | The normalizeDocument function in Mozilla Firefox before 3.5.12 and ... |
| CVE-2010-2767 | The navigator.plugins implementation in Mozilla Firefox before 3.5.12 ... |
| CVE-2010-2768 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ... |
| CVE-2010-2769 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ... |
| CVE-2010-2770 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ... |
| CVE-2010-3131 | Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 ... |
| CVE-2010-3166 | Heap-based buffer overflow in the nsTextFrameUtils::TransformText ... |
| CVE-2010-3167 | The nsTreeContentView function in Mozilla Firefox before 3.5.12 and ... |
| CVE-2010-3168 | Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ... |
| CVE-2010-3169 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3174 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2010-3175 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3176 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3177 | Multiple cross-site scripting (XSS) vulnerabilities in the Gopher ... |
| CVE-2010-3178 | Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird ... |
| CVE-2010-3179 | Stack-based buffer overflow in the text-rendering functionality in ... |
| CVE-2010-3180 | Use-after-free vulnerability in the nsBarProp function in Mozilla ... |
| CVE-2010-3181 | Untrusted search path vulnerability in Mozilla Firefox before 3.5.14 ... |
| CVE-2010-3182 | A certain application-launch script in Mozilla Firefox before 3.5.14 ... |
| CVE-2010-3183 | The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox ... |
| CVE-2010-3765 | Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, ... |
| CVE-2010-3766 | Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and ... |
| CVE-2010-3767 | Integer overflow in the NewIdArray function in Mozilla Firefox before ... |
| CVE-2010-3768 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird ... |
| CVE-2010-3769 | The line-breaking implementation in Mozilla Firefox before 3.5.16 and ... |
| CVE-2010-3770 | Multiple cross-site scripting (XSS) vulnerabilities in the rendering ... |
| CVE-2010-3771 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ... |
| CVE-2010-3772 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ... |
| CVE-2010-3773 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ... |
| CVE-2010-3774 | The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h ... |
| CVE-2010-3775 | Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ... |
| CVE-2010-3776 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2010-3777 | Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and ... |
| CVE-2010-3778 | Unspecified vulnerability in Mozilla Firefox 3.5.x before 3.5.16, ... |
| CVE-2011-0051 | Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey ... |
| CVE-2011-0053 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0054 | Buffer overflow in the JavaScript engine in Mozilla Firefox before ... |
| CVE-2011-0055 | Use-after-free vulnerability in the JSON.stringify method in ... |
| CVE-2011-0056 | Buffer overflow in the JavaScript engine in Mozilla Firefox before ... |
| CVE-2011-0057 | Use-after-free vulnerability in the Web Workers implementation in ... |
| CVE-2011-0058 | Buffer overflow in Mozilla Firefox before 3.5.17 and 3.6.x before ... |
| CVE-2011-0059 | Cross-site request forgery (CSRF) vulnerability in Mozilla Firefox ... |
| CVE-2011-0061 | Buffer overflow in Mozilla Firefox 3.6.x before 3.6.14, Thunderbird ... |
| CVE-2011-0062 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0065 | Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and ... |
| CVE-2011-0066 | Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and ... |
| CVE-2011-0067 | Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey ... |
| CVE-2011-0068 | |
| CVE-2011-0069 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0070 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0071 | Directory traversal vulnerability in Mozilla Firefox before 3.5.19 and ... |
| CVE-2011-0072 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0073 | Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey ... |
| CVE-2011-0074 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0075 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0076 | Unspecified vulnerability in the Java Embedding Plugin (JEP) in ... |
| CVE-2011-0077 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0078 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0079 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0080 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-0081 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-0083 | Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem ... |
| CVE-2011-0084 | The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox ... |
| CVE-2011-0085 | Use-after-free vulnerability in the nsXULCommandDispatcher function in ... |
| CVE-2011-2362 | Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and ... |
| CVE-2011-2363 | Use-after-free vulnerability in the nsSVGPointList::AppendElement ... |
| CVE-2011-2364 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-2365 | Unspecified vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2011-2366 | Mozilla Gecko before 5.0, as used in Firefox before 5.0 and ... |
| CVE-2011-2367 | The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not ... |
| CVE-2011-2368 | The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not ... |
| CVE-2011-2369 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x ... |
| CVE-2011-2370 | Mozilla Firefox before 5.0 does not properly enforce the whitelist for ... |
| CVE-2011-2371 | Integer overflow in the Array.reduceRight method in Mozilla Firefox ... |
| CVE-2011-2372 | Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before ... |
| CVE-2011-2373 | Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x ... |
| CVE-2011-2374 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2375 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2376 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2377 | Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird ... |
| CVE-2011-2378 | The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird ... |
| CVE-2011-2598 | The WebGL implementation in Mozilla Firefox 4.x allows remote ... |
| CVE-2011-2605 | CRLF injection vulnerability in the ... |
| CVE-2011-2980 | Untrusted search path vulnerability in the ThinkPadSensor::Startup ... |
| CVE-2011-2981 | The event-management implementation in Mozilla Firefox before 3.6.20, ... |
| CVE-2011-2982 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2983 | Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, ... |
| CVE-2011-2984 | Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before ... |
| CVE-2011-2985 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2986 | Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x ... |
| CVE-2011-2987 | Heap-based buffer overflow in Almost Native Graphics Layer Engine ... |
| CVE-2011-2988 | Buffer overflow in an unspecified string class in the WebGL shader ... |
| CVE-2011-2989 | The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x ... |
| CVE-2011-2990 | The implementation of Content Security Policy (CSP) violation reports ... |
| CVE-2011-2991 | The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x ... |
| CVE-2011-2992 | The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, ... |
| CVE-2011-2993 | The implementation of digital signatures for JAR files in Mozilla ... |
| CVE-2011-2995 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2996 | Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x ... |
| CVE-2011-2997 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-2998 | Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote ... |
| CVE-2011-2999 | Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before ... |
| CVE-2011-3000 | Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before ... |
| CVE-2011-3001 | Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey ... |
| CVE-2011-3002 | Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla ... |
| CVE-2011-3003 | Mozilla Firefox before 7.0 and SeaMonkey before 2.4 allow remote ... |
| CVE-2011-3004 | The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey ... |
| CVE-2011-3005 | Use-after-free vulnerability in Mozilla Firefox 4.x through 6, ... |
| CVE-2011-3062 | Off-by-one error in the OpenType Sanitizer in Google Chrome before ... |
| CVE-2011-3232 | YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, ... |
| CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft ... |
| CVE-2011-3647 | The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird ... |
| CVE-2011-3648 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ... |
| CVE-2011-3649 | Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) ... |
| CVE-2011-3650 | Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird ... |
| CVE-2011-3651 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-3652 | The browser engine in Mozilla Firefox before 8.0 and Thunderbird ... |
| CVE-2011-3653 | Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do ... |
| CVE-2011-3654 | The browser engine in Mozilla Firefox before 8.0 and Thunderbird ... |
| CVE-2011-3655 | Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 ... |
| CVE-2011-3659 | Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x ... |
| CVE-2011-3660 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2011-3661 | YARR, as used in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 ... |
| CVE-2011-3663 | Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and ... |
| CVE-2011-3664 | Mozilla Firefox before 9.0, Thunderbird before 9.0, and SeaMonkey ... |
| CVE-2011-3665 | Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and ... |
| CVE-2011-3666 | Mozilla Firefox before 3.6.25 and Thunderbird before 3.1.17 on Mac OS ... |
| CVE-2011-3670 | Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before ... |
| CVE-2011-3866 | Mozilla Firefox before 7.0 and SeaMonkey before 2.4 do not properly ... |
| CVE-2012-0442 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0443 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0444 | Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ... |
| CVE-2012-0445 | Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and ... |
| CVE-2012-0446 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2012-0447 | Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and ... |
| CVE-2012-0449 | Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ... |
| CVE-2012-0450 | Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and ... |
| CVE-2012-0451 | CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, ... |
| CVE-2012-0452 | Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, ... |
| CVE-2012-0454 | Use-after-free vulnerability in Mozilla Firefox 4.x through 10.0, ... |
| CVE-2012-0455 | Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ... |
| CVE-2012-0456 | The SVG Filters implementation in Mozilla Firefox before 3.6.28 and ... |
| CVE-2012-0457 | Use-after-free vulnerability in the ... |
| CVE-2012-0458 | Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ... |
| CVE-2012-0459 | The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x ... |
| CVE-2012-0460 | Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, ... |
| CVE-2012-0461 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0462 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0463 | The nsWindow implementation in the browser engine in Mozilla Firefox ... |
| CVE-2012-0464 | Use-after-free vulnerability in the browser engine in Mozilla Firefox ... |
| CVE-2012-0467 | Multiple unspecified vulnerabilities in the browser engine in Mozilla ... |
| CVE-2012-0468 | The browser engine in Mozilla Firefox 4.x through 11.0, Thunderbird ... |
| CVE-2012-0469 | Use-after-free vulnerability in the ... |
| CVE-2012-0470 | Heap-based buffer overflow in the ... |
| CVE-2012-0471 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x ... |
| CVE-2012-0472 | The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, ... |
| CVE-2012-0473 | The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x ... |
| CVE-2012-0474 | Cross-site scripting (XSS) vulnerability in the docshell ... |
| CVE-2012-0477 | Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ... |
| CVE-2012-0478 | The texImage2D implementation in the WebGL subsystem in Mozilla ... |
| CVE-2012-0479 | Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, ... |