Search CVE reports


Toggle filters

1 – 10 of 222 results


CVE-2010-0162

Low priority

Some fixes available 9 of 12

Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly support the application/octet-stream content type as a protection mechanism against execution of web script in certain...

6 affected packages

firefox, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
seamonkey
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2010-0160

Medium priority

Some fixes available 9 of 12

The Web Worker functionality in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly handle array data types for posted messages, which allows remote attackers to cause a denial...

6 affected packages

firefox, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
seamonkey
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2010-0159

Medium priority

Some fixes available 9 of 12

The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash)...

6 affected packages

firefox, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
seamonkey
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2009-3988

Low priority

Some fixes available 9 of 12

Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly restrict read access to object properties in showModalDialog, which allows remote attackers to bypass the Same Origin Policy...

6 affected packages

firefox, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
seamonkey
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2008-7244

Low priority
Ignored

Mozilla Firefox 3.0.1 and earlier allows remote attackers to cause a denial of service (browser hang) by calling the window.print function in a loop, aka a "printing DoS attack," possibly a related issue to CVE-2009-0821.

9 affected packages

firefox, firefox-3.0, firefox-3.5, mozilla-thunderbird, seamonkey...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-3.0
firefox-3.5
mozilla-thunderbird
seamonkey
thunderbird
xulrunner
xulrunner-1.9
xulrunner-1.9.1
Show all 9 packages Show less packages

CVE-2008-6961

Low priority

Some fixes available 5 of 6

mailnews in Mozilla Thunderbird before 2.0.0.18 and SeaMonkey before 1.1.13, when JavaScript is enabled in mail, allows remote attackers to obtain sensitive information about the recipient, or comments in forwarded mail, via...

3 affected packages

mozilla-thunderbird, seamonkey, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mozilla-thunderbird
seamonkey
thunderbird
Show less packages

CVE-2009-2466

Medium priority

Some fixes available 5 of 8

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1)...

5 affected packages

firefox, mozilla-thunderbird, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2009-2465

Medium priority

Some fixes available 5 of 8

Mozilla Firefox before 3.0.12 and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via vectors involving double frame construction, related to (1)...

5 affected packages

firefox, mozilla-thunderbird, thunderbird, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
thunderbird
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2009-2464

Medium priority

Some fixes available 5 of 8

The nsXULTemplateQueryProcessorRDF::CheckIsSeparator function in Mozilla Firefox before 3.0.12, SeaMonkey 2.0a1pre, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or...

6 affected packages

firefox, mozilla-thunderbird, thunderbird, xulrunner, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
thunderbird
xulrunner
xulrunner-1.9
xulrunner-1.9.1
Show less packages

CVE-2009-2463

Medium priority

Some fixes available 9 of 16

Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote...

6 affected packages

firefox, mozilla-thunderbird, thunderbird, xulrunner, xulrunner-1.9, xulrunner-1.9.1

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
mozilla-thunderbird
thunderbird
xulrunner
xulrunner-1.9
xulrunner-1.9.1
Show less packages