Mozilla

Thunderbird

1786 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.16%
  • Veröffentlicht 09.11.2011 11:55:03
  • Zuletzt bearbeitet 16.06.2026 23:33:41

The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly allocate memory, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via...

  • EPSS 1.03%
  • Veröffentlicht 09.11.2011 11:55:03
  • Zuletzt bearbeitet 16.06.2026 23:33:41

Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do not properly interact with the GPU memory behavior of a certain driver for Intel integrated GPUs, which allows remote attackers to bypass the Same Origin Policy and read image data ...

  • EPSS 4.4%
  • Veröffentlicht 09.11.2011 11:55:03
  • Zuletzt bearbeitet 16.06.2026 23:33:41

The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly handle links from SVG mpath elements to non-SVG elements, which allows remote attackers to cause a denial of service (memory corruption and application cras...

  • EPSS 0.92%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:12

Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the holding of the Enter key, which allows user-assisted remote attackers to bypass intended ac...

  • EPSS 4.37%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:23

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (memory corruption and application cra...

  • EPSS 5.31%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:23

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitr...

  • EPSS 1.1%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:24

Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6.0, and SeaMonkey before 2.3 do not properly handle "location" as the name of a frame, which allows remote attackers to bypass the Same Origin Policy via a crafted web site, a diffe...

  • EPSS 2.02%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:24

Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not properly handle HTTP responses that contain multiple Location, Content-Length, or Content-Disposition headers, which makes it easier for remote a...

  • EPSS 1.01%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:24

Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent manual add-on installation in response to the holding of the Enter key, which allows user-assisted remote attackers to bypass intended access restrictions ...

  • EPSS 3.97%
  • Veröffentlicht 29.09.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:32:24

Use-after-free vulnerability in Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OGG headers in a ....