Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
click project click - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2784
The PLUGINSPAGE functionality in Mozilla Firefox prior to 1.5.0.4 allows remote user-assisted malicious users to execute privileged code by tricking a user into installing missing plugins and selecting the "Manual Install" button, then using nested javascript: URLs. NOT...
Mozilla Firefox
NA
CVE-2006-2785
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 1.5.0.4 allows user-assisted remote malicious users to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a ...
Mozilla Firefox
NA
CVE-2006-2779
Mozilla Firefox and Thunderbird prior to 1.5.0.4 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views...
Mozilla Thunderbird 0.6
Mozilla Firefox 0.8
Mozilla Thunderbird 0.7.2
Mozilla Firefox 1.5
Mozilla Firefox 1.5.2
Mozilla Thunderbird 1.0.7
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 0.10.1
Mozilla Thunderbird 1.0
Mozilla Firefox 0.9
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.0.2
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox Preview Release
Mozilla Thunderbird 1.5.2
Mozilla Thunderbird 0.9
Mozilla Firefox 1.5.0.2
NA
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
NA
CVE-2006-2781
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.
Mozilla Seamonkey
Mozilla Thunderbird
NA
CVE-2006-2782
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote malicious users to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Mozilla Seamonkey
Mozilla Firefox
NA
CVE-2006-2775
Mozilla Firefox and Thunderbird prior to 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote malicious users to bypass restrictions by causing a persisted string to be associated with the wrong URL.
Mozilla Thunderbird 0.6
Mozilla Firefox 0.8
Mozilla Thunderbird 0.7.2
Mozilla Firefox 1.5
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.2
Mozilla Thunderbird 1.0.7
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 0.10.1
Mozilla Thunderbird 1.0
Mozilla Firefox 0.9
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.0.2
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.6
Mozilla Thunderbird 0.5
Mozilla Thunderbird 1.0.4
NA
CVE-2006-2776
Certain privileged UI code in Mozilla Firefox and Thunderbird prior to 1.5.0.4 calls content-defined setters on an object prototype, which allows remote malicious users to execute code at a higher privilege than intended.
Mozilla Thunderbird 0.6
Mozilla Firefox 0.8
Mozilla Thunderbird 0.7.2
Mozilla Firefox 1.5
Mozilla Thunderbird 0.3
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 0.2
Mozilla Thunderbird 1.0.7
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 0.10.1
Mozilla Thunderbird 1.0
Mozilla Firefox 0.9
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.0.2
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.6
Mozilla Thunderbird 0.5
NA
CVE-2006-2777
Unspecified vulnerability in Mozilla Firefox prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are execu...
Mozilla Firefox 0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9
Mozilla Seamonkey 1.0
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox
Mozilla Seamonkey
Mozilla Firefox 1.5.0.1
Mozilla Firefox 0.10
Mozilla Firefox 1.0.5
NA
CVE-2006-2778
The crypto.signText function in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow.
Mozilla Firefox
Mozilla Thunderbird
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »