Mozilla

Thunderbird Esr

239 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2012-1941

  • EPSS 6.29%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the nsHTMLReflowState::CalculateHypotheticalBox function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 al...

4.3

CVE-2012-1944

  • EPSS 0.7%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Content Security Policy (CSP) implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 does not block inline event handlers, wh...

2.9

CVE-2012-1945

  • EPSS 0.19%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allow local users to obtain sensitive information via an HTML document that loads a shortcut...

9.3

CVE-2012-1946

  • EPSS 1.45%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsINode::ReplaceOrInsertBefore function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 might allow r...

9.3

CVE-2012-1947

  • EPSS 5.79%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the utf16_to_isolatin1 function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to ...

9.3

CVE-2012-3105

  • EPSS 3.22%
  • Veröffentlicht 05.06.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 does not properly mitigate an unspe...

10

CVE-2012-0467

  • EPSS 2.91%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to cause...

10

CVE-2012-0469

  • EPSS 41.57%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the mozilla::dom::indexedDB::IDBKeyRange::cycleCollection::Trace function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMo...

10

CVE-2012-0470

  • EPSS 13.59%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the nsSVGFEDiffuseLightingElement::LightPixel function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow...

4.3

CVE-2012-0471

  • EPSS 0.72%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote attackers to inject arbitrary web s...