Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 127 results


CVE-2007-3845

Unknown priority
Fixed

Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching "a file handling...

4 affected packages

firefox, iceape, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
mozilla-thunderbird
Show less packages

CVE-2007-3844

Unknown priority
Fixed

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that inserts a (1) javascript: or (2)...

4 affected packages

firefox, iceape, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
mozilla-thunderbird
Show less packages

CVE-2007-3738

Unknown priority
Fixed

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper.

3 affected packages

firefox, iceape, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
Show less packages

CVE-2007-3737

Unknown priority
Fixed

Mozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document."

3 affected packages

firefox, iceape, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
Show less packages

CVE-2007-3736

Unknown priority
Fixed

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or...

3 affected packages

firefox, iceape, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
Show less packages

CVE-2007-3735

Unknown priority
Fixed

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory...

4 affected packages

firefox, iceape, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
mozilla-thunderbird
Show less packages

CVE-2007-3734

Unknown priority
Fixed

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.

4 affected packages

firefox, iceape, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
mozilla-thunderbird
Show less packages

CVE-2007-3670

Unknown priority
Fixed

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary...

3 affected packages

firefox, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
midbrowser
mozilla-thunderbird
Show less packages

CVE-2007-3656

Unknown priority
Fixed

Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform a security zone check when processing a wyciwyg URI, which allows remote attackers to obtain sensitive information, poison the browser cache, and possibly...

3 affected packages

firefox, iceape, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
Show less packages

CVE-2007-3285

Unknown priority
Fixed

Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote attackers to bypass file type checks and possibly execute programs via a (1) file:/// or (2) resource: URI with a dangerous extension, followed by a NULL byte...

3 affected packages

firefox, iceape, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
iceape
midbrowser
Show less packages