Mozilla

Thunderbird

1584 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2015-2713

  • EPSS 1.75%
  • Veröffentlicht 14.05.2015 10:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) v...

6.8

CVE-2015-2710

  • EPSS 2.42%
  • Veröffentlicht 14.05.2015 10:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a craft...

7.5

CVE-2015-2708

  • EPSS 1.33%
  • Veröffentlicht 14.05.2015 10:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or poss...

6.8

CVE-2015-0797

  • EPSS 7.61%
  • Veröffentlicht 14.05.2015 10:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbi...

5

CVE-2015-0816

  • EPSS 85.37%
  • Veröffentlicht 01.04.2015 10:59:14
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the a...

7.5

CVE-2015-0815

  • EPSS 1.25%
  • Veröffentlicht 01.04.2015 10:59:13
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or poss...

5.1

CVE-2015-0813

  • EPSS 2.84%
  • Veröffentlicht 01.04.2015 10:59:12
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Use-after-free vulnerability in the AppendElements function in Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 on Linux, when the Fluendo MP3 plugin for GStreamer is used, allows remote attackers to execute arbi...

6.8

CVE-2015-0807

  • EPSS 0.14%
  • Veröffentlicht 01.04.2015 10:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The navigator.sendBeacon implementation in Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 processes HTTP 30x status codes for redirects after a preflight request has occurred, which allows remote attackers to b...

7.5

CVE-2015-0801

  • EPSS 1.19%
  • Veröffentlicht 01.04.2015 10:59:02
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving anchor navigation, a sim...

7.5

CVE-2015-0836

  • EPSS 1.49%
  • Veröffentlicht 25.02.2015 11:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or poss...