Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.7.8 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-4568
Mozilla Firefox prior to 1.5.0.7 and SeaMonkey prior to 1.0.5 allows remote malicious users to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
Mozilla Firefox
Mozilla Seamonkey
10
CVSSv2
CVE-2006-4571
Multiple unspecified vulnerabilities in Firefox prior to 1.5.0.7, Thunderbird prior to 1.5.0.7, and SeaMonkey prior to 1.0.5 allow remote malicious users to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via unspecified vectors, some of whi...
Mozilla Seamonkey
Mozilla Thunderbird
7.5
CVSSv2
CVE-2004-0718
The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injecti...
Firebirdsql Firebird 0.7
Mozilla Mozilla 1.6
Netscape Navigator 7.1
6.4
CVSSv2
CVE-2006-2781
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.
Mozilla Thunderbird
Mozilla Seamonkey
4.3
CVSSv2
CVE-2006-2782
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote malicious users to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Mozilla Firefox
Mozilla Seamonkey
9.3
CVSSv2
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
4.3
CVSSv2
CVE-2006-2783
Mozilla Firefox and Thunderbird prior to 1.5.0.4 strip the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a BOM sequence in the middle of a dangerous ta...
Mozilla Firefox
Mozilla Thunderbird
5
CVSSv2
CVE-2006-2778
The crypto.signText function in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow.
Mozilla Thunderbird
Mozilla Firefox
2.6
CVSSv2
CVE-2006-2786
HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird prior to 1.5.0.4, when used with certain proxy servers, allows remote malicious users to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP r...
Mozilla Thunderbird
Mozilla Firefox
4.3
CVSSv2
CVE-2006-1729
Mozilla Firefox 1.x prior to 1.5.0.2 and 1.0.x prior to 1.0.8, Mozilla Suite prior to 1.7.13, and SeaMonkey prior to 1.0.1 allows remote malicious users to read arbitrary files by (1) inserting the target filename into a text box, then turning that box into a file upload control,...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Mozilla Suite
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »