thunderbird vulnerabilities and exploits

NA
CVE-2019-18511

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none....

NA
CVE-2019-11759

Mozilla Firefox is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by HKDF output. By persuading a victim to visit a specially-crafted Web site, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the...

NA
CVE-2019-11757

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, cross-site scripting or denial of service. Debian follows the extended support releases (ESR) of Firefox....

NA
CVE-2019-11758

Mozilla Firefox is vulnerable to a denial of service, caused by a memory safety bug in Firefox 68 when 360 Total Security was installed. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to cause the application to...

NA
CVE-2019-11761

Mozilla Firefox could allow a remote attacker to gain unauthorized access to the system, caused by an error when using a form with a data URI. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to gain access to the...

NA
CVE-2019-11763

Mozilla Firefox is vulnerable to cross-site scripting, caused by the failure to correctly handle null bytes when processing HTML entities. A remote attacker could exploit this vulnerability to execute script in a victim's Web browser within the security context of the...

NA
CVE-2019-11760

Mozilla Firefox is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by WebRTC networking. By persuading a victim to visit a specially-crafted Web site, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the...

NA
CVE-2019-11764

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack...

NA
CVE-2019-11762

Mozilla Firefox could allow a remote attacker to bypass security restrictions, caused by an error related to the document.domain-based origin isolation having the same-origin-property violation. By persuading a victim to visit a specially-crafted Web site, a remote attacker...

4.3
CVSSv2
CVE-2019-11744

Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as...