Search CVE reports
1 – 10 of 84 results
CVE-2006-6507
Unknown priorityMozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting (XSS) protection via vectors related to a Function.prototype regression error.
4 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2006-6506
Unknown priorityThe "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to determine browsing habits.
4 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
CVE-2006-4571
Unknown prioritySome fixes available 5 of 6
Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute...
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-4568
Unknown prioritySome fixes available 2 of 3
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates...
5 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-4567
Unknown priorityMozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self-signed certificates for the auto-update mechanism, which might allow remote user-assisted attackers to use DNS spoofing to trick...
5 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
CVE-2006-4565
Unknown prioritySome fixes available 5 of 6
Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a JavaScript...
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-4340
Unknown prioritySome fixes available 5 of 6
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra...
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-3812
Unknown priorityMozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-3811
Unknown priorityMultiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Javascript that...
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |
CVE-2006-3810
Unknown priorityCross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via...
6 affected packages
firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
firefox | — | — | — | — | — |
firefox-granparadiso | — | — | — | — | — |
lightning-sunbird | — | — | — | — | — |
midbrowser | — | — | — | — | — |
mozilla-thunderbird | — | — | — | — | — |
xulrunner | — | — | — | — | — |