| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-2663 | 9.3 |
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg
|
03-10-2018 - 22:00 | 04-08-2009 - 16:30 | |
| CVE-2009-2654 | 5.8 |
Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to spoof the address bar, and possibly conduct phishing attacks, via a crafted web page that calls window.open with an invalid character in the URL, makes document.write c
|
03-10-2018 - 22:00 | 03-08-2009 - 14:30 | |
| CVE-2009-2470 | 5.0 |
Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote SOCKS5 proxy servers to cause a denial of service (data stream corruption) via a long domain name in a reply.
|
19-09-2017 - 01:29 | 04-08-2009 - 16:30 | |
| CVE-2009-2664 | 5.0 |
The js_watch_set function in js/src/jsdbgapi.cpp in the JavaScript engine in Mozilla Firefox before 3.0.12 allows remote attackers to cause a denial of service (assertion failure and application exit) or possibly execute arbitrary code via a crafted
|
19-09-2017 - 01:29 | 04-08-2009 - 16:30 | |
| CVE-2009-2662 | 10.0 |
The browser engine in Mozilla Firefox 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the TraceRecorder::snapshot function in
|
04-09-2009 - 05:28 | 04-08-2009 - 16:30 | |
| CVE-2009-2665 | 10.0 |
The nsDocument::SetScriptGlobalObject function in content/base/src/nsDocument.cpp in Mozilla Firefox 3.5.x before 3.5.2, when certain add-ons are enabled, does not properly handle a Link HTTP header, which allows remote attackers to execute arbitrary
|
04-09-2009 - 05:28 | 04-08-2009 - 16:30 |