This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mozilla:firefox:2.0.0.16:-:~~~linux~~
Detail
VendorMozillaFirst view 2008-09-24
ProductFirefoxLast view2019-04-26
Version2.0.0.16TypeApplication
Edition~~~linux~~ 
Language 
Update- 
 
CPE Productcpe:/a:mozilla:firefox

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52019-04-26CVE-2019-9790NetworkLowNone Requ...
7.52018-06-11CVE-2018-5122NetworkLowNone Requ...
52018-06-11CVE-2018-5121NetworkLowNone Requ...
52018-06-11CVE-2018-5119NetworkLowNone Requ...
52018-06-11CVE-2018-5118NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52018-06-11CVE-2018-5116NetworkLowNone Requ...
52018-06-11CVE-2018-5115NetworkLowNone Requ...
52018-06-11CVE-2018-5114NetworkLowNone Requ...
52018-06-11CVE-2018-5113NetworkLowNone Requ...
52018-06-11CVE-2018-5112NetworkLowNone Requ...
4.32018-06-11CVE-2018-5111NetworkMediumNone Requ...
52018-06-11CVE-2018-5110NetworkLowNone Requ...
52018-06-11CVE-2018-5109NetworkLowNone Requ...
4.32018-06-11CVE-2018-5108NetworkMediumNone Requ...
52018-06-11CVE-2018-5107NetworkLowNone Requ...
52018-06-11CVE-2018-5106NetworkLowNone Requ...
7.22018-06-11CVE-2018-5105LocalLowNone Requ...
52018-06-11CVE-2018-5101NetworkLowNone Requ...
52018-06-11CVE-2018-5100NetworkLowNone Requ...
52018-06-11CVE-2018-5094NetworkLowNone Requ...
52018-06-11CVE-2018-5093NetworkLowNone Requ...
7.52018-06-11CVE-2018-5092NetworkLowNone Requ...
102018-06-11CVE-2018-5090NetworkLowNone Requ...
7.52018-06-11CVE-2018-5089NetworkLowNone Requ...

CWE : Common Weakness Enumeration

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
26% (189)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (107)CWE-399Resource Management Errors
14% (102)CWE-264Permissions, Privileges, and Access Controls
8% (62)CWE-200Information Exposure
7% (54)CWE-20Improper Input Validation
Hide | Show 20 More...
%idName
5% (38)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
3% (27)CWE-189Numeric Errors
3% (27)CWE-94Failure to Control Generation of Code ('Code Injection')
2% (16)CWE-254Security Features
2% (16)CWE-17Code
2% (15)CWE-416Use After Free
1% (14)CWE-310Cryptographic Issues
1% (13)CWE-284Access Control (Authorization) Issues
1% (9)CWE-362Race Condition
0% (7)CWE-16Configuration
0% (4)CWE-352Cross-Site Request Forgery (CSRF)
0% (4)CWE-19Data Handling
0% (3)CWE-287Improper Authentication
0% (3)CWE-125Out-of-bounds Read
0% (2)CWE-704Incorrect Type Conversion or Cast
0% (2)CWE-346Origin Validation Error
0% (2)CWE-190Integer Overflow or Wraparound
0% (2)CWE-59Improper Link Resolution Before File Access ('Link Following')
0% (2)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
0% (1)CWE-787Out-of-bounds Write

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:22013RHSA-2011:1438: thunderbird security update (Moderate)
oval:org.mitre.oval:def:14212Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and...
oval:org.mitre.oval:def:23226ELSA-2011:1438: thunderbird security update (Moderate)
oval:org.mitre.oval:def:23744The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24....
oval:org.mitre.oval:def:25000The PropertyProvider::FindJustificationRange function in Mozilla Firefox befo...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:9161components/sessionstore/src/nsSessionStore.js in Mozilla Firefox before 3.0.6...
oval:org.mitre.oval:def:24571TypedArrayObject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before ...
oval:org.mitre.oval:def:16692Untrusted search path vulnerability in the installer in Mozilla Firefox befor...
oval:org.mitre.oval:def:21545RHSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:21341RHSA-2012:1361: xulrunner security update (Critical)
oval:org.mitre.oval:def:18116USN-1611-1 -- thunderbird vulnerabilities
oval:org.mitre.oval:def:16786Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunderbird be...
oval:org.mitre.oval:def:23952ELSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:23105DEPRECATED: ELSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:23099ELSA-2012:1361: xulrunner security update (Critical)
oval:org.mitre.oval:def:23004DEPRECATED: ELSA-2012:1361: xulrunner security update (Critical)
oval:org.mitre.oval:def:27077DEPRECATED: ELSA-2012-1361 -- xulrunner security update (critical)
oval:org.mitre.oval:def:26871DEPRECATED: ELSA-2012-1362 -- thunderbird security update (critical)
oval:org.mitre.oval:def:21230RHSA-2012:0085: thunderbird security update (Critical)
oval:org.mitre.oval:def:14678Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox...
oval:org.mitre.oval:def:22851ELSA-2012:0085: thunderbird security update (Critical)
oval:org.mitre.oval:def:12324Remote code execution vulnerability using incorrect indexes in XUA tree in Mo...
oval:org.mitre.oval:def:18495Use-after-free vulnerability in the nsEventListenerManager::SetEventHandler f...
oval:org.mitre.oval:def:17117The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations...
oval:org.mitre.oval:def:21047Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and S...

SAINT Exploits

DescriptionLink
Firefox AttributeChildRemoved Use After FreeMore info here
Firefox sensor.dll Insecure Library LoadingMore info here
Mozilla Firefox OBJECT mChannel Use-After-FreeMore info here
Mozilla Firefox nsTreeRange Use After FreeMore info here
Mozilla Firefox PKCS11 Module Installation Code ExecutionMore info here
Hide | Show 3 More...
DescriptionLink
Mozilla Firefox onreadystatechange Event Use After FreeMore info here
Mozilla Firefox XMLSerializer serializeToStream Use-after-free VulnerabilityMore info here
Firefox crypto.generateCRMFRequest command executionMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
77955Mozilla Multiple Product for Mac DOM Frame Deletion NULL Dereference Remote C...
77609Mozilla Multiple Product CSS Token Sequence Parsing Timing Attack Remote Info...
77539Mozilla Firefox Cache Objects IFRAME Handling Browsing History Disclosure
76954Mozilla Multiple Product WebGL GPU Memory Random Image Disclosure
76952Mozilla Multiple Product Firebug JavaScript File Profiling Remote Memory Corr...
Hide | Show 20 More...
idDescription
76950Mozilla Multiple Product Unchecked Allocation Failure Remote Memory Corruption
76949Mozilla Multiple Product SVG <mpath> Non-SVG Link Remote Memory Corruption
76948Mozilla Multiple Product Shift-JIS XSS
76947Mozilla Multiple Product JSSubScriptLoader loadSubScript Method XPCNativeWrap...
75847Mozilla Multiple Product Multiple Tab Handling Keystroke Disclosure
75844Mozilla Multiple Product YARR Unspecified Memory Corruption
75841Mozilla Multiple Product Enter Key Download Dialog Verification Bypass
75840Mozilla Multiple Product PLUGINSPAGE Enter Key Addon Installation Verificatio...
75839Mozilla Multiple Product Multiple Header Handling HTTP Response Splitting Wea...
75838Mozilla Multiple Product window.location Named Frame Creation Same Origin Pol...
75834Mozilla Multiple Product Multiple Unspecified Memory Corruption (2011-2995)
74587Mozilla Multiple Products Tab Element Dropping Weakness Remote Code Execution
74586Mozilla Multiple Products RegExp.input Property Same Origin Policy Bypass Inf...
74585Mozilla Multiple Products Multiple Unspecified Memory Corruption (2011-2982)
74584Mozilla Multiple Products Event-Management Same Origin Policy Bypass Remote C...
74583Mozilla Multiple Products ThinkPadSensor::Startup() Function Path Subversion ...
74582Mozilla Multiple Products .appendChild() Function DOM Object Handling Remote ...
74581Mozilla Multiple Products SVGTextElement.getCharNumAtPosition() Function SVG ...
74448Mozilla Firefox HTTPS Session HTTP Set-Cookie Header HSTS includeSubDomains W...
74319Mozilla Multiple Products netwerk/cookie/nsCookieService.cpp nsCookieService:...

ExploitDB Exploits

idDescription
34363Firefox toString console.time Privileged Javascript Injection
30474Firefox 5.0 - 15.0.1 - __exposedProps__ XCS Code Execution
18531Mozilla Firefox Firefox 4.0.1 Array.reduceRight() Exploit
17974Mozilla Firefox Array.reduceRight() Integer Overflow Exploit
10544Mozilla Firefox Location Bar Spoofing Vulnerability

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2406-1 (icedove - several vulnerabilities)
File : nvt/deb_2406_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2458-2 (iceape - several vulnerabilities)
File : nvt/deb_2458_2.nasl
2013-09-18Name : Debian Security Advisory DSA 2553-1 (iceweasel - several vulnerabilities)
File : nvt/deb_2553_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2583-1 (iceweasel - several vulnerabilities)
File : nvt/deb_2583_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2584-1 (iceape - several vulnerabilities)
File : nvt/deb_2584_1.nasl
Hide | Show 20 More...
idDescription
2013-09-18Name : Debian Security Advisory DSA 2588-1 (icedove - several vulnerabilities)
File : nvt/deb_2588_1.nasl
2013-04-01Name : Mozilla Firefox ESR Code Execution Vulnerabilities - November12 (Mac OS X)
File : nvt/gb_mozilla_firefox_esr_code_exec_vuln_nov12_macosx.nasl
2013-04-01Name : Mozilla Firefox ESR Code Execution Vulnerabilities - November12 (Windows)
File : nvt/gb_mozilla_firefox_esr_code_exec_vuln_nov12_win.nasl
2012-12-13Name : SuSE Update for MozillaFirefox, openSUSE-SU-2012:0760-1 (MozillaFirefox,)
File : nvt/gb_suse_2012_0760_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox openSUSE-SU-2012:1064-1 (MozillaFirefox)
File : nvt/gb_suse_2012_1064_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox openSUSE-SU-2012:1345-1 (MozillaFirefox)
File : nvt/gb_suse_2012_1345_1.nasl
2012-12-13Name : SuSE Update for Mozilla Suite openSUSE-SU-2012:1412-1 (Mozilla Suite)
File : nvt/gb_suse_2012_1412_1.nasl
2012-12-06Name : Fedora Update for seamonkey FEDORA-2012-18931
File : nvt/gb_fedora_2012_18931_seamonkey_fc16.nasl
2012-12-06Name : Fedora Update for seamonkey FEDORA-2012-18952
File : nvt/gb_fedora_2012_18952_seamonkey_fc17.nasl
2012-12-04Name : Ubuntu Update for firefox USN-1638-3
File : nvt/gb_ubuntu_USN_1638_3.nasl
2012-11-26Name : Mozilla SeaMonkey Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_seamonkey_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 (Windows)
File : nvt/gb_mozilla_seamonkey_mult_vuln02_nov12_win.nasl
2012-11-26Name : Mozilla Thunderbird ESR Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_thunderbird_esr_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Thunderbird Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_thunderbird_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Thunderbird Multiple Vulnerabilities-02 November12 (Windows)
File : nvt/gb_mozilla_thunderbird_mult_vuln02_nov12_win.nasl
2012-11-26Name : FreeBSD Ports: firefox
File : nvt/freebsd_firefox72.nasl
2012-11-26Name : Mozilla Firefox Code Execution Vulnerabilities - November12 (Mac OS X)
File : nvt/gb_mozilla_firefox_code_exec_vuln_nov12_macosx.nasl
2012-11-26Name : Mozilla Firefox Code Execution Vulnerabilities - November12 (Windows)
File : nvt/gb_mozilla_firefox_code_exec_vuln_nov12_win.nasl
2012-11-26Name : Mozilla Firefox ESR Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_firefox_esr_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Firefox Multiple Vulnerabilities - November12 (Mac OS X)
File : nvt/gb_mozilla_firefox_mult_vuln_nov12_macosx.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0223Multiple Security Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0061473
2015-A-0154Multiple Vulnerabilities in Oracle Fusion Middleware
Severity : Category I - VMSKEY : V0061081
2014-A-0113Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0053309
2014-A-0082Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0052487
2014-A-0064Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0050011
Hide | Show 6 More...
idDescription
2014-A-0043Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0046769
2014-A-0021Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0043921
2013-A-0233Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0042596
2013-A-0220Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0042380
2013-A-0203Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0041365
2011-A-0160Multiple Vulnerabilities in VMware vCenter Server 4.0 and vCenter Update Mana...
Severity : Category I - VMSKEY : V0030769

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-05-24Mozilla Firefox DOMSVGLength appendItem use after free attempt
RuleID : 49918 - Type : BROWSER-FIREFOX - Revision : 1
2019-05-24Mozilla Firefox DOMSVGLength appendItem use after free attempt
RuleID : 49917 - Type : BROWSER-FIREFOX - Revision : 1
2018-12-07out-of-bounds write attempt with malicious MAR file detected
RuleID : 48296 - Type : FILE-OTHER - Revision : 2
2018-12-07out-of-bounds write attempt with malicious MAR file detected
RuleID : 48295 - Type : FILE-OTHER - Revision : 2
2018-07-10Mozilla multiple products JavaScript string replace buffer overflow attempt
RuleID : 46913 - Type : BROWSER-FIREFOX - Revision : 1
Hide | Show 20 More...
DateDescription
2018-07-10Mozilla multiple products JavaScript string replace buffer overflow attempt
RuleID : 46912 - Type : BROWSER-FIREFOX - Revision : 1
2018-06-21Mozilla Firefox nsHTMLDocument SetBody use-after-free attempt
RuleID : 46781 - Type : BROWSER-FIREFOX - Revision : 2
2018-06-21Mozilla Firefox nsHTMLDocument SetBody use-after-free attempt
RuleID : 46767 - Type : BROWSER-FIREFOX - Revision : 4
2018-06-21Mozilla Firefox nsHTMLDocument SetBody use-after-free attempt
RuleID : 46766 - Type : BROWSER-FIREFOX - Revision : 2
2018-06-21Mozilla Firefox nsHTMLDocument SetBody use-after-free attempt
RuleID : 46765 - Type : BROWSER-FIREFOX - Revision : 2
2018-05-22Mozilla Firefox table object integer underflow
RuleID : 46399 - Type : BROWSER-OTHER - Revision : 2
2018-05-22Mozilla Firefox table object integer underflow
RuleID : 46398 - Type : BROWSER-OTHER - Revision : 2
2018-01-18Multiple browser pressure function denial of service attempt
RuleID : 45206 - Type : BROWSER-FIREFOX - Revision : 2
2018-01-17Mozilla Firefox nsTreeContentView double-free memory corruption attempt
RuleID : 45176 - Type : BROWSER-FIREFOX - Revision : 1
2017-09-19Mozilla Firefox empty lookupGetter dangling pointer attempt
RuleID : 44010 - Type : BROWSER-FIREFOX - Revision : 2
2017-09-19Mozilla Firefox empty lookupGetter dangling pointer attempt
RuleID : 44009 - Type : BROWSER-FIREFOX - Revision : 2
2017-08-31Mozilla multiple products SharedWorker MessagePort memory corruption attempt
RuleID : 43779 - Type : BROWSER-FIREFOX - Revision : 1
2017-08-31Mozilla Firefox nsTreeContentView double-free memory corruption attempt
RuleID : 43778 - Type : BROWSER-FIREFOX - Revision : 2
2017-03-01Mozilla Firefox generatecrmfrequest policy function call access attempt
RuleID : 41423 - Type : BROWSER-PLUGINS - Revision : 3
2017-03-01Mozilla Firefox generatecrmfrequest policy function call access attempt
RuleID : 41422 - Type : BROWSER-PLUGINS - Revision : 3
2017-01-12Nitro Pro PDF Reader out of bounds write attempt
RuleID : 41197 - Type : FILE-PDF - Revision : 5
2017-01-12Nitro Pro PDF Reader out of bounds write attempt
RuleID : 41196 - Type : FILE-PDF - Revision : 5
2016-11-08Mozilla Firefox CSP report-uri arbitrary file write attempt
RuleID : 40363 - Type : BROWSER-FIREFOX - Revision : 2
2016-10-10Mozilla Firefox about field spoofing attempt
RuleID : 40015-community - Type : BROWSER-FIREFOX - Revision : 2
2016-10-01Mozilla Firefox about field spoofing attempt
RuleID : 40015 - Type : BROWSER-FIREFOX - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-10-05Name : A web browser installed on the remote macOS host is affected by multiple vuln...
File : macosx_firefox_49_0.nasl - Type : ACT_GATHER_INFO
2018-10-05Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : mozilla_firefox_49_0.nasl - Type : ACT_GATHER_INFO
2018-04-04Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201803-14.nasl - Type : ACT_GATHER_INFO
2018-03-21Name : The remote macOS or Mac OS X host contains a mail client that is affected by ...
File : macosx_thunderbird_52_6.nasl - Type : ACT_GATHER_INFO
2018-03-21Name : The remote Windows host contains a mail client that is affected by multiple v...
File : mozilla_thunderbird_52_6.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-02-20Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201802-03.nasl - Type : ACT_GATHER_INFO
2018-02-13Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1043.nasl - Type : ACT_GATHER_INFO
2018-02-13Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1044.nasl - Type : ACT_GATHER_INFO
2018-02-05Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_5044bd2308cb11e8b08f00012e582166.nasl - Type : ACT_GATHER_INFO
2018-02-02Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-0262.nasl - Type : ACT_GATHER_INFO
2018-01-31Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4102.nasl - Type : ACT_GATHER_INFO
2018-01-30Name : The remote Debian host is missing a security update.
File : debian_DLA-1262.nasl - Type : ACT_GATHER_INFO
2018-01-25Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-0122.nasl - Type : ACT_GATHER_INFO
2018-01-25Name : The remote Debian host is missing a security update.
File : debian_DLA-1256.nasl - Type : ACT_GATHER_INFO
2018-01-25Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4096.nasl - Type : ACT_GATHER_INFO
2018-01-24Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_a891c5b43d7a4de99c71eef3fd698c77.nasl - Type : ACT_GATHER_INFO
2018-01-24Name : A web browser installed on the remote macOS or Mac OS X host is affected by m...
File : macosx_firefox_52_6_esr.nasl - Type : ACT_GATHER_INFO
2018-01-24Name : A web browser installed on the remote macOS or Mac OS X host is affected by a...
File : macosx_firefox_58_0.nasl - Type : ACT_GATHER_INFO
2018-01-24Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : mozilla_firefox_52_6_esr.nasl - Type : ACT_GATHER_INFO
2018-01-24Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : mozilla_firefox_58_0.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201801-15.nasl - Type : ACT_GATHER_INFO
2017-12-04Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-3477-3.nasl - Type : ACT_GATHER_INFO
2017-11-29Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_6056bf68f5704e70b740b9f606971283.nasl - Type : ACT_GATHER_INFO
2017-11-28Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-3477-2.nasl - Type : ACT_GATHER_INFO
2017-11-17Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-3477-1.nasl - Type : ACT_GATHER_INFO