CVE-2007-0777
- EPSS 7.56%
- Veröffentlicht 26.02.2007 19:28:00
- Zuletzt bearbeitet 16.06.2026 22:36:16
The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain vect...
CVE-2006-6497
- EPSS 4.29%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:14
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service (memory corruption and ...
CVE-2006-6498
- EPSS 4.29%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:14
Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, SeaMonkey before 1.0.7, and Mozilla 1.7 and probably earlier on Solaris, allow remote attackers to...
CVE-2006-6499
- EPSS 3.72%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:14
The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers ...
CVE-2006-6500
- EPSS 8.29%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting...
CVE-2006-6501
- EPSS 2.83%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.
CVE-2006-6502
- EPSS 2.28%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Use-after-free vulnerability in the LiveConnect bridge code for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) via unknown ...
CVE-2006-6503
- EPSS 3.97%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: ...
CVE-2006-6505
- EPSS 4.21%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:16
Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5.0.9 and SeaMonkey before 1.0.7 allow remote attackers to execute arbitrary code via (1) external message modies with long Content-Type headers or (2) long RFC2047-encoded (MIME no...
CVE-2006-5463
- EPSS 2.61%
- Veröffentlicht 08.11.2006 22:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:15
Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary JavaScript bytecode via unspecified vectors involving modification of a Script object whi...