Vulnerabilities > Mozilla > Firefox > 3.0.12

DATE CVE VULNERABILITY TITLE RISK
2018-06-11 CVE-2017-7760 Channel and Path Errors vulnerability in Mozilla Firefox and Firefox ESR
The Mozilla Windows updater modifies some files to be updated by reading the original file and applying changes to it.
local
low complexity
mozilla microsoft CWE-417
4.6
2018-06-11 CVE-2017-7759 Information Exposure vulnerability in multiple products
Android intent URLs given to Firefox for Android can be used to navigate from HTTP or HTTPS URLs to local "file:" URLs, allowing for the reading of local data through a violation of same-origin policy.
network
low complexity
mozilla google CWE-200
5.0
2018-06-11 CVE-2017-7758 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in use.
network
low complexity
redhat mozilla debian CWE-125
6.4
2018-06-11 CVE-2017-7757 Use After Free vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird
A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed.
network
low complexity
mozilla debian CWE-416
7.5
2018-06-11 CVE-2017-7756 Use After Free vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird
A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR).
network
low complexity
mozilla debian CWE-416
7.5
2018-06-11 CVE-2017-7755 Untrusted Search Path vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird
The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run.
6.8
2018-06-11 CVE-2017-7754 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations.
network
low complexity
debian redhat mozilla CWE-125
5.0
2018-06-11 CVE-2017-7753 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data.
network
low complexity
debian redhat mozilla CWE-125
6.4
2018-06-11 CVE-2017-7752 Use After Free vulnerability in multiple products
A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled.
6.8
2018-06-11 CVE-2017-7751 Use After Free vulnerability in multiple products
A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash.
network
low complexity
debian redhat mozilla CWE-416
7.5