CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Mozilla » Firefox » 3.5 : Vulnerability Statistics

Vulnerabilities (344) Related Metasploit Modules   (Cpe Name:cpe:/a:mozilla:firefox:3.5)
Vulnerability Feeds & Widgets

Vulnerability Trends Over Time

Year # of Vulnerabilities DoS Code Execution Overflow Memory Corruption Sql Injection XSS Directory Traversal Http Response Splitting Bypass something Gain Information Gain Privileges CSRF File Inclusion # of exploits
2009 26 15 12 2 6 3 1 3
2010 70 24 40 15 17 9 6 2 2 6
2011 54 21 34 8 18 1 1 6 5 2 1
2012 105 50 78 19 46 12 7 5 2 1
2013 55 25 40 11 19 2 3 5
2014 34 14 13 5 4 1 1 10 6 1
Total 344 149 217 60 110 28 2 33 23 7 2 9
% Of All 43.3 63.1 17.4 32.0 0.0 8.1 0.6 0.0 9.6 6.7 2.0 0.6 0.0

Warning : Vulnerabilities with publish dates before 1999 are not included in this table and chart. (Because there are not many of them and they make the page look bad; and they may not be actually published in those years.)

Vulnerabilities By Year
26
70
54
105
55
34
  2009 26
2010 70
2011 54
2012 105
2013 55
2014 34
Vulnerabilities By Type
149
217
60
110
28
33
23
7
2
2
  Denial of Service 149
Execute Code 217
Overflow 60
Memory Corruption 110
XSS 28
Bypass Something 33
Gain Information 23
Gain Privilege 7
Directory Traversal 2
CSRF 2

Click on legend names to show/hide lines for vulnerability types
If you can't see MS Office style charts above then it's time to upgrade your browser!
P.S: Charts may not be displayed properly especially if there are only a few data points. Consider donating for a better but non-free chart library which would allow a lot more options and flexibility.

This page lists vulnerability statistics for Mozilla Firefox 3.5 . Vulnerability statistics provide a quick overview for security vulnerabilities of Mozilla Firefox 3.5

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.