Mozilla

Thunderbird Esr

239 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2012-0472

  • EPSS 1.53%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9, when certain Windows Vista and Windows 7 configurations a...

5

CVE-2012-0473

  • EPSS 0.71%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 calls the FindMaxElementInSubArray function...

4.3

CVE-2012-0474

  • EPSS 0.69%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the docshell implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote atta...

4.3

CVE-2012-0477

  • EPSS 0.72%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to inject arbit...

9.3

CVE-2012-0478

  • EPSS 0.76%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

The texImage2D implementation in the WebGL subsystem in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 does not properly restrict JSVAL_TO_O...

4.3

CVE-2012-0479

  • EPSS 0.78%
  • Published 25.04.2012 10:10:17
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to spoof the address bar via an https URL for invalid (1) RSS or (2) A...

6.8

CVE-2011-3062

  • EPSS 2.39%
  • Published 30.03.2012 22:55:01
  • Last modified 11.04.2025 00:51:21

Off-by-one error in the OpenType Sanitizer in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted OpenType file.

6.8

CVE-2012-0458

Exploit
  • EPSS 2.78%
  • Published 14.03.2012 19:55:02
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through th...

7.5

CVE-2012-0459

  • EPSS 3.44%
  • Published 14.03.2012 19:55:02
  • Last modified 11.04.2025 00:51:21

The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote attackers to cause a denial ...

6.4

CVE-2012-0460

  • EPSS 1.8%
  • Published 14.03.2012 19:55:02
  • Last modified 11.04.2025 00:51:21

Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict write access to the window.fullScreen object, which allows remote at...