Mozilla

Seamonkey

704 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-2752

  • EPSS 8.93%
  • Veröffentlicht 30.07.2010 20:30:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Casc...

9.3

CVE-2010-2753

Exploit
  • EPSS 4.09%
  • Veröffentlicht 30.07.2010 20:30:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a X...

9.3

CVE-2010-1208

  • EPSS 1.55%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the attribute-cloning functionality in the DOM implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via vectors rel...

9.3

CVE-2010-1209

  • EPSS 2.98%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via a crafted NodeFilter that detaches DOM no...

9.3

CVE-2010-1211

  • EPSS 2.85%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allow remote attackers to cause a denial of se...

4.3

CVE-2010-1213

  • EPSS 0.2%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not verify that content is valid JavaScript code, which allows r...

9.3

CVE-2010-1214

  • EPSS 5.79%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via plugin content with many parameter elements.

5

CVE-2010-2754

  • EPSS 0.26%
  • Veröffentlicht 30.07.2010 13:26:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppress a script's URL in certain circumstances involving...

9.8

CVE-2010-1205

Exploit
  • EPSS 17.03%
  • Veröffentlicht 30.06.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

4.3

CVE-2010-1206

Exploit
  • EPSS 0.48%
  • Veröffentlicht 25.06.2010 19:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The startDocumentLoad function in browser/base/content/browser.js in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, does not properly implement the Same Origin Policy in certain circumstances related to the ab...