Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla thunderbird 9.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-7805
During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leav...
Mozilla Firefox 56.0
Mozilla Firefox Esr 52.4.0
Mozilla Thunderbird 52.4.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2012-0441
The ASN.1 decoder in the QuickDER decoder in Mozilla Network Security Services (NSS) prior to 3.13.4, as used in Firefox 4.x up to and including 12.0, Firefox ESR 10.x prior to 10.0.5, Thunderbird 5.0 up to and including 12.0, Thunderbird ESR 10.x prior to 10.0.5, and SeaMonkey p...
Mozilla Firefox 4.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox Esr 10.0
Mozilla Firefox Esr 10.0.1
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 7.0.1
Mozilla Thunderbird 10.0.1
Mozilla Thunderbird 10.0
Mozilla Thunderbird 10.0.4
Mozilla Thunderbird Esr 10.0.4
Mozilla Seamonkey
Mozilla Seamonkey 2.8
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6.1
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.3
Mozilla Firefox 7.0
Mozilla Firefox 8.0
6.5
CVSSv3
CVE-2021-43528
Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities. This vulnerability af...
Mozilla Thunderbird
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
5.9
CVSSv3
CVE-2021-38502
Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the authenticated session to execute SMTP commands chosen by the MITM. If an unprotected ...
Mozilla Thunderbird
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2012-0443
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x up to and including 9.0, Thunderbird 5.0 up to and including 9.0, and SeaMonkey prior to 2.7 allow remote malicious users to cause a denial of service (memory corruption and application crash) or po...
Mozilla Firefox 4.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 9.0
Mozilla Firefox 4.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 7.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 6.0.1
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.3.3
NA
CVE-2012-0447
Mozilla Firefox 4.x up to and including 9.0, Thunderbird 5.0 up to and including 9.0, and SeaMonkey prior to 2.7 do not properly initialize data for image/vnd.microsoft.icon images, which allows remote malicious users to obtain potentially sensitive information by reading a PNG i...
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 7.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0
Mozilla Firefox 6.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 6.0
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 6.0
Mozilla Thunderbird 7.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0
Mozilla Seamonkey 2.7
Mozilla Seamonkey 2.6.1
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.4
NA
CVE-2012-0445
Mozilla Firefox 4.x up to and including 9.0, Thunderbird 5.0 up to and including 9.0, and SeaMonkey prior to 2.7 allow remote malicious users to bypass the HTML5 frame-navigation policy and replace arbitrary sub-frames by creating a form submission target with a sub-frame's ...
Mozilla Firefox 4.0
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0
Mozilla Firefox 4.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 5.0
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 7.0
Mozilla Seamonkey 2.6.1
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.3.2
NA
CVE-2012-0446
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x up to and including 9.0, Thunderbird 5.0 up to and including 9.0, and SeaMonkey prior to 2.7 allow remote malicious users to inject arbitrary web script or HTML via a (1) web page or (2) Firefox extension,...
Mozilla Firefox 4.0
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 9.0
Mozilla Thunderbird 7.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 6.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 9.0
Mozilla Seamonkey 2.6.1
Mozilla Seamonkey 2.6
Mozilla Seamonkey 2.5
Mozilla Seamonkey 2.3.3
NA
CVE-2012-0454
Use-after-free vulnerability in Mozilla Firefox 4.x up to and including 10.0, Firefox ESR 10.x prior to 10.0.3, Thunderbird 5.0 up to and including 10.0, Thunderbird ESR 10.x prior to 10.0.3, and SeaMonkey prior to 2.8 on 32-bit Windows 7 platforms allows remote malicious users t...
Mozilla Firefox 4.0.1
Mozilla Firefox 4.0
Mozilla Firefox 6.0.2
Mozilla Firefox 6.0.1
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 9.0.1
Mozilla Firefox 9.0
Mozilla Firefox 7.0.1
Mozilla Firefox 7.0
Mozilla Firefox 5.0
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox Esr 10.2
Mozilla Firefox Esr 10.1
Mozilla Firefox Esr 10.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0.1
Mozilla Thunderbird 7.0.1
Mozilla Thunderbird 7.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0
4.3
CVSSv3
CVE-2018-12367
In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTiming was not adjusted but it was found that it could be used as a precision timer. ...
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »