Mozilla

Thunderbird

1567 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-1211

  • EPSS 3.8%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allow remote attackers to cause a denial of se...

9.3

CVE-2010-1212

  • EPSS 2.03%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via v...

4.3

CVE-2010-1213

  • EPSS 0.2%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not verify that content is valid JavaScript code, which allows r...

6.8

CVE-2010-1215

  • EPSS 0.48%
  • Veröffentlicht 30.07.2010 20:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper (aka SJOW) wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrom...

5

CVE-2010-2754

  • EPSS 0.26%
  • Veröffentlicht 30.07.2010 13:26:18
  • Zuletzt bearbeitet 11.04.2025 00:51:21

dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppress a script's URL in certain circumstances involving...

9.8

CVE-2010-1205

Exploit
  • EPSS 16.78%
  • Veröffentlicht 30.06.2010 18:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

9.3

CVE-2010-1196

  • EPSS 5.23%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the nsGenericDOMDataNode::SetTextInternal function in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a DOM nod...

9.3

CVE-2010-1199

  • EPSS 46.74%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a large text value for ...

9.3

CVE-2010-1200

  • EPSS 6.22%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allow remote attackers to cause a denial of service (memory corruption and ...

9.3

CVE-2010-1201

Exploit
  • EPSS 4.59%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.10, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly ex...