Mozilla

Seamonkey

704 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2006-6503

  • EPSS 10.29%
  • Veröffentlicht 20.12.2006 01:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: ...

9.3

CVE-2006-6504

  • EPSS 41.55%
  • Veröffentlicht 20.12.2006 01:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document, which triggers memory corruption.

6.8

CVE-2006-6505

  • EPSS 27.49%
  • Veröffentlicht 20.12.2006 01:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5.0.9 and SeaMonkey before 1.0.7 allow remote attackers to execute arbitrary code via (1) external message modies with long Content-Type headers or (2) long RFC2047-encoded (MIME no...

7.5

CVE-2006-5463

  • EPSS 9.1%
  • Veröffentlicht 08.11.2006 22:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary JavaScript bytecode via unspecified vectors involving modification of a Script object whi...

6.4

CVE-2006-5462

  • EPSS 12.79%
  • Veröffentlicht 08.11.2006 21:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature...

5

CVE-2006-5464

  • EPSS 22.09%
  • Veröffentlicht 08.11.2006 21:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) via unspecified vectors.

7.5

CVE-2006-5747

  • EPSS 12.45%
  • Veröffentlicht 08.11.2006 21:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary code via the XML.prototype.hasOwnProperty JavaScript function.

5

CVE-2006-5748

  • EPSS 12.33%
  • Veröffentlicht 08.11.2006 21:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code vi...

5

CVE-2006-5633

Exploit
  • EPSS 16.08%
  • Veröffentlicht 31.10.2006 22:07:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to cause a denial of service (crash) by creating a range object using createRange, calling selectNode on a DocType node (DOCUMENT_TYPE_NODE), then calling createContextualFragment o...

4.3

CVE-2006-4568

  • EPSS 0.72%
  • Veröffentlicht 15.09.2006 19:07:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other atta...