Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) via vectors that trigger memory corruption, related to the GetXMLEntity and FastAppendChar functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox window.onerror DOM API 文件泄露漏洞
Vulnerability Description
Firefox是Mozilla所发布的开源WEB浏览器。 Firefox中的多个安全漏洞允许恶意用户泄露敏感信息、绕过安全限制、执行欺骗攻击或入侵用户系统。由于代码共享,Thunderbird和SeaMonkey也受这些漏洞的影响。 1) 布局和JavaScript引擎中的多个错误可能导致内存破坏并执行任意代码。 2) 在处理persist XUL属性中的错误可能导致绕过cookie设置,在之后浏览会话中识别出用户。 3) XBL绑定中的错误可能被利用绕过同源策略泄露敏感信息或以chrome权限执行Jav
CVSS Information
N/A
Vulnerability Type
N/A