| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-3089 | 4.3 |
Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript cod
|
16-10-2018 - 16:47 | 06-06-2007 - 21:30 | |
| CVE-2007-3734 | 9.3 |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 | |
| CVE-2007-3738 | 9.3 |
Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper.
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 | |
| CVE-2007-3736 | 4.3 |
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, probab
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 | |
| CVE-2007-3735 | 9.3 |
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 | |
| CVE-2007-3737 | 9.3 |
Mozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document."
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 |