- Home
- CVEs with nessus.description==The installed version of Firefox is earlier than 3.0.15. Such
versions are potentially affected by the following security issues :
- It may be possible for a malicious web page to
steal form history. (MFSA 2009-52)
- By predicting the filename of an already
downloaded file in the downloads directory, a
local attacker may be able to trick the browser
into opening an incorrect file. (MFSA 2009-53)
- Provided the browser is configured to use Proxy
Auto-configuration it may be possible for an
attacker to crash the browser or execute arbitrary
code. (MFSA 2009-55)
- Mozilla's GIF image parser is affected by a
heap-based buffer overflow. (MFSA 2009-56)
- A vulnerability in XPCOM utility
'XPCVariant::VariantDataToJS' could allow
executing arbitrary JavaScript code with chrome
privileges. (MFSA 2009-57)
- A vulnerability in Mozilla's string to floating
point number conversion routine could allow
arbitrary code execution on the remote system.
(MFSA 2009-59)
- It may be possible to read text from a web page
using JavaScript function 'document.getSelection()
from a different domain. (MFSA 2009-61)
- If a file contains right-to-left override character
(RTL) in the filename it may be possible for an
attacker to obfuscate the filename and extension
of the file being downloaded. (MFSA 2009-62)
- Multiple memory corruption vulnerabilities could
potentially allow arbitrary code execution.
(MFSA 2009-64)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top