Vulnerabilities > Mozilla > Mozilla > 1.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-10-18 | CVE-2004-1614 | Unspecified vulnerability in Mozilla Mozilla allows remote attackers to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme. | 5.0 |
2004-10-18 | CVE-2004-1613 | Memory Corruption vulnerability in Mozilla Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing characters, as demonstrated by mangleme. | 5.0 |
2004-09-14 | CVE-2004-0905 | Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain. | 4.6 |
2004-08-06 | CVE-2004-0648 | Unspecified vulnerability in Mozilla Firefox, Mozilla and Thunderbird Mozilla (Suite) before 1.7.1, Firefox before 0.9.2, and Thunderbird before 0.7.2 allow remote attackers to launch arbitrary programs via a URI referencing the shell: protocol. | 10.0 |