Search CVE reports
1 – 10 of 127 results
CVE-2007-3845
Unknown priorityMozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching "a file handling...
4 affected packages
firefox, iceape, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2007-3844
Unknown priorityMozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that inserts a (1) javascript: or (2)...
4 affected packages
firefox, iceape, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2007-3738
Unknown priorityMultiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper.
3 affected packages
firefox, iceape, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2007-3737
Unknown priorityMozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document."
3 affected packages
firefox, iceape, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2007-3736
Unknown priorityCross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or...
3 affected packages
firefox, iceape, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2007-3735
Unknown priorityMultiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory...
4 affected packages
firefox, iceape, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2007-3734
Unknown priorityMultiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.
4 affected packages
firefox, iceape, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2007-3670
Unknown priorityArgument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary...
3 affected packages
firefox, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2007-3656
Unknown priorityMozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform a security zone check when processing a wyciwyg URI, which allows remote attackers to obtain sensitive information, poison the browser cache, and possibly...
3 affected packages
firefox, iceape, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2007-3285
Unknown priorityMozilla Firefox before 2.0.0.5, when run on Windows, allows remote attackers to bypass file type checks and possibly execute programs via a (1) file:/// or (2) resource: URI with a dangerous extension, followed by a NULL byte...
3 affected packages
firefox, iceape, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
iceape | — | — | — | — | — |
midbrowser | — | — | — | — | — |