Mozilla

Thunderbird Esr

239 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2012-1972

  • EPSS 3.31%
  • Published 29.08.2012 10:56:39
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in the nsHTMLEditor::CollapseAdjacentTextNodes function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote ...

10

CVE-2012-1973

  • EPSS 4.25%
  • Published 29.08.2012 10:56:39
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in the nsObjectLoadingContent::LoadObject function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attac...

4.3

CVE-2012-1961

  • EPSS 1.17%
  • Published 18.07.2012 10:26:49
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not properly handle duplicate values in X-Frame-Options headers, which makes it easier fo...

10

CVE-2012-1962

  • EPSS 3.4%
  • Published 18.07.2012 10:26:49
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in the JSDependentString::undepend function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allows remote at...

4.3

CVE-2012-1963

  • EPSS 1.49%
  • Published 18.07.2012 10:26:49
  • Last modified 11.04.2025 00:51:21

The Content Security Policy (CSP) functionality in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 does not properly restrict the strings pl...

4

CVE-2012-1964

  • EPSS 0.88%
  • Published 18.07.2012 10:26:49
  • Last modified 11.04.2025 00:51:21

The certificate-warning functionality in browser/components/certerror/content/aboutCertError.xhtml in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey be...

10

CVE-2012-1967

  • EPSS 3.4%
  • Published 18.07.2012 10:26:49
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not properly implement the JavaScript sandbox utility, which allows remote attackers to e...

9.3

CVE-2012-1948

  • EPSS 3.75%
  • Published 18.07.2012 10:26:48
  • Last modified 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allow remote attackers to caus...

10

CVE-2012-1951

  • EPSS 3.4%
  • Published 18.07.2012 10:26:48
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allows rem...

9.3

CVE-2012-1952

  • EPSS 1.56%
  • Published 18.07.2012 10:26:48
  • Last modified 11.04.2025 00:51:21

The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 does not properly perform a cast of a frame varia...