Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chris thomas vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1234
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 2.0.0.13, Thunderbird prior to 2.0.0.13, and SeaMonkey prior to 1.1.9 allows remote malicious users to inject arbitrary web script or HTML via event handlers, aka "Universal XSS using event handlers."
Mozilla Thunderbird
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2008-1235
Unspecified vulnerability in Mozilla Firefox prior to 2.0.0.13, Thunderbird prior to 2.0.0.13, and SeaMonkey prior to 1.1.9 allows remote malicious users to execute arbitrary code via unknown vectors that cause JavaScript to execute with the wrong principal, aka "Privilege e...
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.1
Mozilla Firefox 0.8
Mozilla Firefox 0.7.1
Mozilla Firefox 0.7
Mozilla Thunderbird 2.0.0.9
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 1.5.0.10
Mozilla Thunderbird 1.5.0.9
Mozilla Thunderbird 1.0.7
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.6
NA
CVE-2007-3738
Multiple unspecified vulnerabilities in Mozilla Firefox prior to 2.0.0.5 allow remote malicious users to execute arbitrary code via a crafted XPCNativeWrapper.
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
NA
CVE-2007-5338
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 allow remote malicious users to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2007-1558
The APOP protocol allows remote malicious users to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderb...
Apop Protocol Apop Protocol
NA
CVE-2007-2867
Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x prior to 1.5.0.12 and 2.x prior to 2.0.0.4, Thunderbird 1.5.x prior to 1.5.0.12 and 2.x prior to 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote malicious users to cause a denial of service (crash) via ve...
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.2
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.4
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Thunderbird 1.5.0.10
Mozilla Thunderbird 1.5.0.11
Mozilla Thunderbird 1.5.1
Mozilla Thunderbird 1.5.2
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.1
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.1
Mozilla Thunderbird 1.5.0.7
Mozilla Thunderbird 1.5.0.8
Mozilla Thunderbird 1.5.0.9
NA
CVE-2007-2868
Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x prior to 1.5.0.12 and 2.x prior to 2.0.0.4, Thunderbird 1.5.x prior to 1.5.0.12 and 2.x prior to 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote malicious users to cause a denial of service (crash) an...
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.1
Mozilla Thunderbird 1.5.0.7
Mozilla Thunderbird 1.5.0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.6
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.2
Mozilla Thunderbird 1.5.0.4
Mozilla Thunderbird 1.5.0.6
Mozilla Thunderbird 2.0.0.3
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Thunderbird 1.5.0.2
NA
CVE-2008-5701
Array index error in arch/mips/kernel/scall64-o32.S in the Linux kernel prior to 2.6.28-rc8 on 64-bit MIPS platforms allows local users to cause a denial of service (system crash) via an o32 syscall with a small syscall number, which leads to an attempted read operation outside t...
Linux Linux Kernel 2.6.28
Linux Linux Kernel
Debian Debian Linux 4.0
NA
CVE-2009-0834
The audit_syscall_entry function in the Linux kernel 2.6.28.7 and previous versions on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall aud...
Linux Linux Kernel
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Eus 4.7
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
Redhat Enterprise Linux Server Aus 5.3
Redhat Enterprise Linux Eus 5.3
Opensuse Opensuse 11.0
Opensuse Opensuse 10.3
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Software Development Kit 10
NA
CVE-2009-0859
The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel prior to 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstra...
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »