Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla thunderbird 0.9 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2005-0149
Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers to bypass the user's intended privacy and security policy by using cookies in e-mail messages....
Mozilla Mozilla 1.7Mozilla Mozilla 1.7.2Mozilla Mozilla 1.7.3Mozilla Thunderbird 0.7.1Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.9Mozilla Mozilla 1.7.1Mozilla Thunderbird 0.6Mozilla Thunderbird 0.7
NA
CVE-2005-0255
String handling functions in Mozilla 1.7.3, Firefox 1.0, and Thunderbird before 1.0.2, such as the nsTSubstring_CharT::Replace function, do not properly check the return values of other functions that resize the string, which allows remote attackers to cause a denial of service...
Mozilla Thunderbird 0.1Mozilla Thunderbird 0.2Mozilla Firefox 1.0Mozilla Mozilla 1.7.3Mozilla Thunderbird 0.7Mozilla Thunderbird 0.8Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0Mozilla Thunderbird 0.5Mozilla Thunderbird 0.6
NA
CVE-2005-4809
Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla and Thunderbird, allows remote attackers to spoof the URL in the Status Bar via an A HREF tag that contains a TABLE tag that contains another A tag....
Mozilla Firefox 0.10Mozilla Firefox 0.10.1Mozilla Firefox 1.0Mozilla Firefox 1.0.1Mozilla Firefox Preview ReleaseMozilla Thunderbird 0.7.1Mozilla Thunderbird 0.7.2Mozilla Firefox 0.9.3Mozilla Firefox 0.9Mozilla Thunderbird 0.6Mozilla Thunderbird 0.7Mozilla Thunderbird 1.0.1Mozilla Firefox 0.8Mozilla Mozilla 1.7.3Mozilla Mozilla 1.7.4Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.8Mozilla Firefox 0.9.1Mozilla Firefox 0.9.2Mozilla Mozilla 1.7.5Mozilla Mozilla 1.7.6Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0
NA
CVE-2005-0142
Firefox 0.9, Thunderbird 0.6 and other versions before 0.9, and Mozilla 1.7 before 1.7.5 save temporary files with world-readable permissions, which allows local users to read certain web content or attachments that belong to other users, e.g. content that is managed by helper...
Mozilla Mozilla 1.7Mozilla Thunderbird 0.6Mozilla Mozilla 1.7.2Mozilla Mozilla 1.7.3Mozilla Firefox 0.9Mozilla Thunderbird 0.7Mozilla Thunderbird 0.8Mozilla Mozilla 1.7.1
NA
CVE-2006-0884
The WYSIWYG rendering engine ("rich mail" editor) in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC...
Mozilla Thunderbird 1.0Mozilla Thunderbird 0.7Mozilla Thunderbird 0.7.1Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.5Mozilla Thunderbird 0.6Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.5Mozilla Thunderbird 0.8Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0.6Mozilla ThunderbirdMozilla Thunderbird 0.1Mozilla Thunderbird 0.2
NA
CVE-2005-0399
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a crafted Netscape extension 2...
Mozilla Firefox 0.9.2Mozilla Firefox 0.9.3Mozilla Mozilla 1.4Mozilla Mozilla 1.5Mozilla Mozilla 1.5.1Mozilla Mozilla 1.7Mozilla Mozilla 1.7.1Mozilla Thunderbird 0.7.1Mozilla Thunderbird 0.7.2Mozilla Firefox 0.10.1Mozilla Firefox 0.8Mozilla Firefox 1.0.1Mozilla Mozilla 1.3Mozilla Mozilla 1.6Mozilla Mozilla 1.7.5Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0Mozilla Firefox 0.10Mozilla Firefox 0.9Mozilla Firefox 1.0Mozilla Mozilla 1.7.2Mozilla Mozilla 1.7.3Mozilla Thunderbird 0.1Mozilla Thunderbird 0.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.8Mozilla Firefox 0.9.1Mozilla Mozilla 1.4.1Mozilla Thunderbird 0.5Mozilla Thunderbird 0.6Mozilla Thunderbird 0.7Mozilla Thunderbird 1.0.1
NA
CVE-2005-0590
The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequence in the URL,...
Mozilla Firefox 0.8Mozilla Firefox 0.9Mozilla Mozilla 1.4.1Mozilla Mozilla 1.4Mozilla Mozilla 1.6Mozilla Mozilla 1.7Mozilla Thunderbird 0.6Mozilla Thunderbird 0.7Mozilla Firefox 0.9.3Mozilla Firefox 1.0Mozilla Mozilla 1.5Mozilla Firefox 0.10Mozilla Firefox 0.10.1Mozilla Mozilla 1.3Mozilla Mozilla 1.7.5Mozilla Thunderbird 0.4Mozilla Thunderbird 0.5Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0Mozilla Mozilla 1.7.2Mozilla Mozilla 1.7.3Mozilla Thunderbird 0.2Mozilla Thunderbird 0.3Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.8Mozilla Firefox 0.9.1Mozilla Firefox 0.9.2Mozilla Mozilla 1.5.1Mozilla Mozilla 1.7.1Mozilla Thunderbird 0.1Mozilla Thunderbird 0.7.1Mozilla Thunderbird 0.7.2
NA
CVE-2006-2776
Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended....
Mozilla Firefox 0.10Mozilla Firefox 0.10.1Mozilla Firefox 1.0Mozilla Firefox 1.0.1Mozilla Firefox 1.0.7Mozilla Firefox 1.5Mozilla Firefox 1.5.0.1Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Thunderbird 0.8Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0.6Mozilla Thunderbird 1.0.7Mozilla Firefox 0.8Mozilla Firefox 0.9Mozilla Firefox 1.0.2Mozilla Firefox 1.0.3Mozilla Firefox 1.5.0.2Mozilla Firefox 1.5.0.3Mozilla Thunderbird 0.5Mozilla Thunderbird 0.6Mozilla Thunderbird 1.0Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.5Mozilla Thunderbird 1.5.0.1Mozilla Firefox 0.9.3Mozilla Firefox 1.0.6Mozilla Thunderbird 0.1Mozilla Thunderbird 0.2Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 1.0.4Mozilla Thunderbird 1.0.5Mozilla Firefox 0.9.1Mozilla Firefox 0.9.2Mozilla Firefox 1.0.4Mozilla Firefox 1.0.5Mozilla Thunderbird 0.7Mozilla Thunderbird 0.7.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.3
NA
CVE-2006-2775
Mozilla Firefox and Thunderbird before 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote attackers to bypass restrictions by causing a persisted string to be associated with the wrong URL....
Mozilla Firefox 0.9.2Mozilla Firefox 0.9.3Mozilla Firefox 1.0.5Mozilla Firefox 1.0.6Mozilla Firefox 1.5Mozilla Thunderbird 0.1Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 1.0.4Mozilla Thunderbird 1.0.5Mozilla ThunderbirdMozilla Firefox 0.9Mozilla Firefox 0.9.1Mozilla Firefox 1.0.3Mozilla Firefox 1.0.4Mozilla Firefox 1.5.0.2Mozilla Thunderbird 0.7Mozilla Thunderbird 0.7.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.3Mozilla Thunderbird 1.5Mozilla FirefoxMozilla Firefox 0.10Mozilla Firefox 0.10.1Mozilla Firefox 0.8Mozilla Firefox 1.0.1Mozilla Firefox 1.0.2Mozilla Firefox 1.5.0.1Mozilla Thunderbird 0.5Mozilla Thunderbird 0.6Mozilla Thunderbird 1.0Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.7Mozilla Firefox 1.0Mozilla Firefox 1.0.7Mozilla Thunderbird 0.2Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Thunderbird 0.8Mozilla Thunderbird 0.9Mozilla Thunderbird 1.0.6
NA
CVE-2006-2779
Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views,"...
Mozilla Firefox 0.9.3Mozilla Firefox 0.9Mozilla Firefox 1.0.7Mozilla Firefox 1.0.8Mozilla Firefox 1.5Mozilla Firefox Preview ReleaseMozilla Thunderbird 0.9Mozilla Thunderbird 1.0Mozilla Thunderbird 1.5.1Mozilla Thunderbird 1.5.2Mozilla Firefox 0.10Mozilla Firefox 0.10.1Mozilla Firefox 1.0Mozilla Firefox 1.0.1Mozilla Firefox 1.5.0.2Mozilla Thunderbird 0.6Mozilla Thunderbird 0.7Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.5Mozilla Thunderbird 1.5Mozilla Firefox 0.9.1Mozilla Firefox 0.9.2Mozilla Firefox 1.0.5Mozilla Firefox 1.0.6Mozilla Firefox 1.5.3Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.8Mozilla Thunderbird 1.0.8Mozilla Firefox 0.8Mozilla Firefox 1.0.2Mozilla Firefox 1.0.3Mozilla Firefox 1.0.4Mozilla Firefox 1.5.1Mozilla Firefox 1.5.2Mozilla Thunderbird 0.7.1Mozilla Thunderbird 0.7.2Mozilla Thunderbird 1.0.6Mozilla Thunderbird 1.0.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionSSTICVE-2023-28846CVE-2022-47986cache poisoningCVE-2023-23397CVE-2023-28755CVE-2023-25040CVE-2023-1755
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook