CVE search results

181 – 190 of 222 results

Detailed view

Sort by:

CVE-2006-0749

Unknown priority

Fixed

nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—

CVE-2006-0748

Unknown priority

Fixed

Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via "an invalid and non-sensical ordering of...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-1045

Unknown priority

Fixed

The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-0884

Unknown priority

Some fixes available 7 of 8

The WYSIWYG rendering engine ("rich mail" editor) in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-0836

Unknown priority

Ignored

Mozilla Thunderbird 1.5 allows user-assisted attackers to cause an unspecified denial of service by tricking the user into importing an LDIF file with a long field into the address book, as demonstrated by a long homePhone field.

1 affected packages

mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mozilla-thunderbird	—	—	—	—	—

CVE-2006-0299

Unknown priority

Fixed

The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript in mail, and SeaMonkey before 1.0 exposes the internal "AnyName" object to external interfaces, which allows multiple cooperating...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—

CVE-2006-0298

Unknown priority

Fixed

The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly read sensitive data via unknown attack vectors that trigger an out-of-bounds read.

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—

CVE-2006-0297

Unknown priority

Fixed

Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the (1) EscapeAttributeValue in jsxml.c for...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-0296

Unknown priority

Fixed

The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attribute name, which allows remote attackers to execute arbitrary Javascript by injecting RDF data into the...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—

CVE-2006-0295

Unknown priority

Fixed

Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects,...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports