|
300021
|
- |
|
mozilla
|
firefox
seamonkey
|
Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle injection of an ISINDEX element into an about:blank page, which allows remote attackers to…
|
NVD-CWE-Other
|
CVE-2010-3771
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300022
|
- |
|
mozilla
|
firefox
seamonkey
|
Multiple cross-site scripting (XSS) vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arb…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3770
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300023
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
The line-breaking implementation in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 on Windows does not properly h…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3769
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300024
|
- |
|
mozilla
|
firefox
seamonkey
thunderbird
|
Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an o…
|
CWE-20
Improper Input Validation
|
CVE-2010-3768
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300025
|
- |
|
mozilla
|
firefox
seamonkey
|
Integer overflow in the NewIdArray function in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allows remote attackers to execute arbitrary code via a JavaScript a…
|
CWE-189
Numeric Errors
|
CVE-2010-3767
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300026
|
- |
|
mozilla
|
firefox
seamonkey
|
Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allows remote attackers to execute arbitrary code via vectors involving a change to…
|
CWE-399
Resource Management Errors
|
CVE-2010-3766
|
2024-11-21 10:19 |
2010-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300027
|
- |
|
sixapart
|
movabletype
|
SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-3922
|
2024-11-21 10:19 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300028
|
- |
|
sixapart
|
movabletype
|
Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3921
|
2024-11-21 10:19 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300029
|
- |
|
apple
|
quicktime
|
Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted panoram…
|
CWE-189
Numeric Errors
|
CVE-2010-3802
|
2024-11-21 10:19 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300030
|
- |
|
apple
|
quicktime
|
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted FlashPix file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3801
|
2024-11-21 10:19 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
