Mozilla

Thunderbird

1584 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2014-1486

  • EPSS 10.82%
  • Veröffentlicht 06.02.2014 05:44:24
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Use-after-free vulnerability in the imgRequestProxy function in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving unsp...

10

CVE-2013-5618

Exploit
  • EPSS 10.38%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user interface in the editor component in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows ...

10

CVE-2013-6671

Exploit
  • EPSS 10.4%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code via crafted use of JavaScript code for ordere...

5.9

CVE-2013-6673

Exploit
  • EPSS 0.55%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 do not recognize a user's removal of trust from an EV X.509 certificate, which makes it easier for man-in-the-middle attackers to spoof SSL ...

10

CVE-2013-5613

Exploit
  • EPSS 11.06%
  • Veröffentlicht 11.12.2013 15:55:12
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code or cause...

9.8

CVE-2013-5615

Exploit
  • EPSS 2.01%
  • Veröffentlicht 11.12.2013 15:55:12
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 does not properly enforce certain typeset restrictions on the generation of GetElementIC typed array stubs,...

9.8

CVE-2013-5616

Exploit
  • EPSS 2.87%
  • Veröffentlicht 11.12.2013 15:55:12
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Use-after-free vulnerability in the nsEventListenerManager::HandleEventSubType function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code...

10

CVE-2013-5609

Exploit
  • EPSS 2.75%
  • Veröffentlicht 11.12.2013 15:55:07
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allow remote attackers to cause a denial of service (memory corruption and app...

5

CVE-2013-6629

  • EPSS 0.21%
  • Veröffentlicht 19.11.2013 04:50:56
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of s...

10

CVE-2013-5590

  • EPSS 2.06%
  • Veröffentlicht 30.10.2013 10:55:04
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allow remote atta...