Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mozilla thunderbird 1.5 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2006-0236
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by...
Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.7Mozilla Thunderbird 1.5Mozilla Thunderbird 1.0.5Mozilla Thunderbird 1.0.6Mozilla Thunderbird 1.0
NA
CVE-2006-3812
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links....
Mozilla Firefox 1.5Mozilla Seamonkey 1.0Mozilla Seamonkey 1.0.1Mozilla Thunderbird 1.5.0.3Mozilla Thunderbird 1.5.0.4Mozilla Thunderbird 1.5.0.1Mozilla Thunderbird 1.5.0.2Mozilla Firefox 1.5.0.3Mozilla Firefox 1.5.0.4Mozilla Thunderbird 1.5Mozilla Firefox 1.5.0.1Mozilla Firefox 1.5.0.2Mozilla Seamonkey 1.0.2Mozilla Thunderbird 1.5.1Mozilla Thunderbird 1.5.2
NA
CVE-2006-0295
Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption....
Mozilla Firefox 1.5Mozilla Seamonkey 1.0Mozilla Thunderbird 1.5
NA
CVE-2006-1732
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting (XSS) attacks via unspecified...
Mozilla Firefox 1.0.1Mozilla Firefox 1.0.2Mozilla Firefox 1.0.3Mozilla Firefox 1.5Mozilla Seamonkey 1.0Mozilla Thunderbird 1.0.5Mozilla Firefox 1.0.6Mozilla Firefox 1.0.7Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.5Mozilla Firefox 1.0Mozilla Thunderbird 1.0.3Mozilla Thunderbird 1.0.4Mozilla Firefox 1.0.4Mozilla Firefox 1.0.5Mozilla Thunderbird 1.0Mozilla Thunderbird 1.0.6Mozilla Thunderbird 1.0.7
NA
CVE-2006-0297
Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the (1) EscapeAttributeValue in jsxml.c for E4X, (2) nsSVGCairoSurface::Init in SVG, and (3)...
Mozilla Firefox 1.5Mozilla Seamonkey 1.0Mozilla Thunderbird 1.5
NA
CVE-2006-0299
The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript in mail, and SeaMonkey before 1.0 exposes the internal "AnyName" object to external interfaces, which allows multiple cooperating domains to exchange information in...
Mozilla Firefox 1.5Mozilla Seamonkey 1.0Mozilla Thunderbird 1.5
NA
CVE-2006-2787
EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to gain privileges via javascript that calls the valueOf method on objects that were created outside of the sandbox....
Mozilla Firefox 1.0Mozilla Firefox 1.0.7Mozilla Firefox 1.5Mozilla Thunderbird 1.0.2Mozilla Thunderbird 1.0.3Mozilla Firefox 1.0.1Mozilla Firefox 1.0.2Mozilla Firefox 1.5.0.1Mozilla Thunderbird 1.0.4Mozilla Thunderbird 1.0.5Mozilla Firefox 1.0.5Mozilla Firefox 1.0.6Mozilla Thunderbird 1.0Mozilla Thunderbird 1.0.1Mozilla Thunderbird 1.0.7Mozilla Thunderbird 1.5Mozilla Firefox 1.0.3Mozilla Firefox 1.0.4Mozilla Firefox Preview ReleaseMozilla Thunderbird 1.0.6
NA
CVE-2006-3804
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow....
Mozilla Thunderbird 1.5.0.2Mozilla Thunderbird 1.5.0.4Mozilla Seamonkey 1.0Mozilla Thunderbird 1.5Mozilla Seamonkey 1.0.1Mozilla Seamonkey 1.0.2
NA
CVE-2006-3805
The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used....
Mozilla Firefox 1.5Mozilla Seamonkey 1.0.2Mozilla Seamonkey 1.0Mozilla Seamonkey 1.0.1Mozilla Firefox 1.5.0.3Mozilla Firefox 1.5.0.4Mozilla Thunderbird 1.5.0.4Mozilla Firefox 1.5.0.1Mozilla Firefox 1.5.0.2Mozilla Thunderbird 1.5Mozilla Thunderbird 1.5.0.2
NA
CVE-2006-3810
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct....
Mozilla Firefox 1.5Mozilla Firefox 1.5.0.1Mozilla Seamonkey 1.0Mozilla Thunderbird 1.5Mozilla Seamonkey 1.0.1Mozilla Seamonkey 1.0.2Mozilla Firefox 1.5.0.4Mozilla Firefox 1.5.0.2Mozilla Firefox 1.5.0.3Mozilla Thunderbird 1.5.0.2Mozilla Thunderbird 1.5.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionSSTICVE-2023-28846CVE-2022-47986cache poisoningCVE-2023-23397CVE-2023-28755CVE-2023-25040CVE-2023-1755
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook