Mozilla

Seamonkey

704 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2006-6503

  • EPSS 10.29%
  • Published 20.12.2006 01:28:00
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: ...

9.3

CVE-2006-6504

  • EPSS 41.55%
  • Published 20.12.2006 01:28:00
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document, which triggers memory corruption.

6.8

CVE-2006-6505

  • EPSS 27.49%
  • Published 20.12.2006 01:28:00
  • Last modified 09.04.2025 00:30:58

Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5.0.9 and SeaMonkey before 1.0.7 allow remote attackers to execute arbitrary code via (1) external message modies with long Content-Type headers or (2) long RFC2047-encoded (MIME no...

7.5

CVE-2006-5463

  • EPSS 9.1%
  • Published 08.11.2006 22:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary JavaScript bytecode via unspecified vectors involving modification of a Script object whi...

6.4

CVE-2006-5462

  • EPSS 12.79%
  • Published 08.11.2006 21:07:00
  • Last modified 09.04.2025 00:30:58

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature...

5

CVE-2006-5464

  • EPSS 22.09%
  • Published 08.11.2006 21:07:00
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) via unspecified vectors.

7.5

CVE-2006-5747

  • EPSS 12.45%
  • Published 08.11.2006 21:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary code via the XML.prototype.hasOwnProperty JavaScript function.

5

CVE-2006-5748

  • EPSS 12.33%
  • Published 08.11.2006 21:07:00
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code vi...

5

CVE-2006-5633

Exploit
  • EPSS 16.08%
  • Published 31.10.2006 22:07:00
  • Last modified 09.04.2025 00:30:58

Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to cause a denial of service (crash) by creating a range object using createRange, calling selectNode on a DocType node (DOCUMENT_TYPE_NODE), then calling createContextualFragment o...

4.3

CVE-2006-4568

  • EPSS 0.72%
  • Published 15.09.2006 19:07:00
  • Last modified 03.04.2025 01:03:51

Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other atta...