CVSS: 9.3EPSS: 5%CPEs: 152EXPL: 0CVE-2009-3981 – Mozilla crashes with evidence of memory corruption
https://notcve.org/view.php?id=CVE-2009-3981
17 Dec 2009 — Unspecified vulnerability in the browser engine in Mozilla Firefox before 3.0.16, SeaMonkey before 2.0.1, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Vulnerabilidad no especificada en el motor del navegador de Mozilla Firefox antes de v3.0.16, SeaMonkey antes de v2.0.1 y Thunderbird permite a atacantes remotos provocar una denegación de servicio (mediante corrupción de la memoria y bloq... • http://secunia.com/advisories/37699 •
CVSS: 9.8EPSS: 4%CPEs: 156EXPL: 0CVE-2009-3979 – Mozilla crash with evidence of memory corruption
https://notcve.org/view.php?id=CVE-2009-3979
17 Dec 2009 — Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades no especificadas en el motor del navegador de Mozilla Firefox antes de v3.0.16 y 3.5.x antes de 3.5.6, SeaMonkey antes de v2.0.1 y Thunderbird permiten a atacantes remotos provoca... • http://secunia.com/advisories/37699 •
CVSS: 9.3EPSS: 5%CPEs: 52EXPL: 0CVE-2009-3982
https://notcve.org/view.php?id=CVE-2009-3982
17 Dec 2009 — Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades no especificadas en el motor JavaScript en Mozilla Firefox v3.5.x antes de v3.5.6, SeaMonkey antes de v2.0.1 y Thunderbird permite a atacantes remotos provocar una denegación de servicio (median... • http://secunia.com/advisories/37699 •
CVSS: 9.8EPSS: 4%CPEs: 51EXPL: 0CVE-2009-3389 – Gentoo Linux Security Advisory 201312-04
https://notcve.org/view.php?id=CVE-2009-3389
17 Dec 2009 — Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used in Mozilla Firefox 3.5 before 3.5.6 and SeaMonkey before 2.0.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a video with large dimensions. Un desbordamiento de entero en libtheora en Xiph.Org Theora antes de v1.1, tal como se utiliza en Mozilla Firefox v3.5 antes de v3.5.6 y SeaMonkey antes de v2.0.1, permite a atacantes remotos causar una denegación de servicio (mediante ... • http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html • CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 1%CPEs: 70EXPL: 0CVE-2009-3978
https://notcve.org/view.php?id=CVE-2009-3978
19 Nov 2009 — The nsGIFDecoder2::GifWrite function in decoders/gif/nsGIFDecoder2.cpp in libpr0n in Mozilla Firefox before 3.5.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an animated GIF file with a large image size, a different vulnerability than CVE-2009-3373. la función nsGIFDecoder2::GifWrite en decoders/gif/nsGIFDecoder2.cpp en libpr0n en Mozilla Firefox anterior a v3.5.5, permite a atacantes remotos provocar una denegación de servicio (deferencia punter... • http://hg.mozilla.org/releases/mozilla-1.9.1/rev/edf189567edc •
CVSS: 6.5EPSS: 0%CPEs: 21EXPL: 0CVE-2009-3375 – Firefox cross-origin data theft through document.getSelection()
https://notcve.org/view.php?id=CVE-2009-3375
29 Oct 2009 — content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function. content/html/document/src/nsHTMLDocument.cpp en Mozilla Firefox v3.0.x anteriores a v3.0.15 y v3.5.x anteriores a v3.5.4 permite a atacantes remotos ayudados por un usuario evitar la politica "Same Origin" y leer contenido arbitrario a través de la funci... • http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 45%CPEs: 17EXPL: 0CVE-2009-3380 – Firefox crashes with evidence of memory corruption
https://notcve.org/view.php?id=CVE-2009-3380
29 Oct 2009 — Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades inespecíficas en el motor del navegador en Mozilla Firefox v3.0.x anteriores a v3.0.15 y v3.5.x anteriores a v3.5.4 permite a atacantes remotos producir una denegación de servicio (corrupción de memoria y caída de ... • http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 •
CVSS: 10.0EPSS: 27%CPEs: 3EXPL: 0CVE-2009-3383
https://notcve.org/view.php?id=CVE-2009-3383
29 Oct 2009 — Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Múltiples vulnerabilidades inespecíficas en el motor JavaScript en Mozilla Firefox v3.5.x anteriores a 3.5.4 permite a atacantes remotos producir una denegación de servicio (corrupción de memoria y caída de aplicación) o posiblemente ejecutar código arbitrario a... • http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 •
CVSS: 10.0EPSS: 50%CPEs: 4EXPL: 1CVE-2009-3371
https://notcve.org/view.php?id=CVE-2009-3371
29 Oct 2009 — Use-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code by creating JavaScript web-workers recursively. Vulnerabilidad de uso después de la liberación en Mozilla Firefox v3.5.x anteriores a v3.5.4 permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o posiblemente ejecutar código arbitrario mediante la creación de web-workers de JavaScript recursivos. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 20%CPEs: 3EXPL: 0CVE-2009-3381
https://notcve.org/view.php?id=CVE-2009-3381
29 Oct 2009 — Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Multiples vulnerabilidades inespecíficas en el motor del navegador Moxilla Firefox v3.5.x anteriores a v3.5.4 lo que permitiría a atacantes remotos producir una denegación de servicio (corrupción de memoria y caída de aplicación) o posiblemente ejecutar código arbi... • http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 •