Mozilla

Thunderbird

1567 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2011-2371

  • EPSS 87%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript...

7.6

CVE-2011-2373

  • EPSS 2.71%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.

10

CVE-2011-2374

  • EPSS 4.2%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...

10

CVE-2011-2375

  • EPSS 2.12%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...

10

CVE-2011-2376

  • EPSS 1.75%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and Thunderbird before 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code...

5

CVE-2011-2377

  • EPSS 4.61%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a multip...

4.3

CVE-2011-2605

  • EPSS 0.35%
  • Veröffentlicht 30.06.2011 16:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to bypass inten...

10

CVE-2011-0083

  • EPSS 2.45%
  • Veröffentlicht 30.06.2011 16:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to cause a denial ...

10

CVE-2011-0085

  • EPSS 2.45%
  • Veröffentlicht 30.06.2011 16:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsXULCommandDispatcher function in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via a crafted XUL document that dequeues t...

4.3

CVE-2011-2366

Exploit
  • EPSS 0.61%
  • Veröffentlicht 30.06.2011 15:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack invo...