Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 84 results


CVE-2006-6507

Unknown priority
Fixed

Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting (XSS) protection via vectors related to a Function.prototype regression error.

4 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
Show less packages

CVE-2006-6506

Unknown priority
Fixed

The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to determine browsing habits.

4 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
Show less packages

CVE-2006-4571

Unknown priority

Some fixes available 5 of 6

Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages

CVE-2006-4568

Unknown priority

Some fixes available 2 of 3

Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
xulrunner
Show less packages

CVE-2006-4567

Unknown priority
Fixed

Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self-signed certificates for the auto-update mechanism, which might allow remote user-assisted attackers to use DNS spoofing to trick...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
Show less packages

CVE-2006-4565

Unknown priority

Some fixes available 5 of 6

Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a JavaScript...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages

CVE-2006-4340

Unknown priority

Some fixes available 5 of 6

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages

CVE-2006-3812

Unknown priority
Fixed

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages

CVE-2006-3811

Unknown priority
Fixed

Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Javascript that...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages

CVE-2006-3810

Unknown priority
Fixed

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
firefox
firefox-granparadiso
lightning-sunbird
midbrowser
mozilla-thunderbird
xulrunner
Show less packages