Vulnerabilities (CVE)

Filtered by vendor Mozilla Subscribe
Filtered by product Gecko
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-2366 1 Mozilla 3 Firefox, Gecko, Thunderbird 2024-11-21 4.3 MEDIUM N/A
Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted WebGL fragment shader.
CVE-2004-1639 1 Mozilla 3 Firefox, Gecko, Mozilla 2024-11-20 5.0 MEDIUM N/A
Mozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows remote attackers to cause a denial of service (application crash or memory consumption) via a large binary file with a .html extension.