|
301011
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 5.0 does not properly enforce the whitelist for the xpinstall functionality, which allows remote attackers to trigger an installation dialog for a (1) add-on or (2) theme via u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2370
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301012
|
- |
|
mozilla
|
firefox
|
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attackers to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2369
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301013
|
- |
|
mozilla
|
firefox
|
The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (applic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2368
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301014
|
- |
|
mozilla
|
firefox
|
The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict read operations, which allows remote attackers to obtain sensitive information from GPU memory associated with…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2367
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301015
|
- |
|
mozilla
|
thunderbird
firefox
|
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and applic…
|
NVD-CWE-noinfo
|
CVE-2011-2365
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301016
|
- |
|
mozilla
|
thunderbird
firefox
|
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and applic…
|
NVD-CWE-noinfo
|
CVE-2011-2364
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301017
|
- |
|
mozilla
|
seamonkey
firefox
thunderbird
|
Use-after-free vulnerability in the nsSVGPointList::AppendElement function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey throug…
|
CWE-399
Resource Management Errors
|
CVE-2011-2363
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301018
|
- |
|
mozilla
|
seamonkey
firefox
thunderbird
|
Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 do not distinguish between cookies for two domain names that differ only in a trailing dot, which allows remote …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2362
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301019
|
- |
|
intel
|
g41_driver
|
The Intel G41 driver 6.14.10.5355 on Windows XP SP3 allows remote attackers to cause a denial of service (system crash) via a crafted web page that is visited with Google Chrome or Mozilla Firefox, a…
|
CWE-399
Resource Management Errors
|
CVE-2011-2604
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301020
|
- |
|
nvidia
|
9400m_driver
|
The NVIDIA 9400M driver 6.2.6 on Mac OS X 10.6.7 allows remote attackers to cause a denial of service (desktop hang) via a crafted web page that is visited with Google Chrome or Mozilla Firefox, as d…
|
CWE-399
Resource Management Errors
|
CVE-2011-2603
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
