Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
galeon vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2785
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 1.5.0.4 allows user-assisted remote malicious users to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a ...
Mozilla Firefox
NA
CVE-2006-2775
Mozilla Firefox and Thunderbird prior to 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote malicious users to bypass restrictions by causing a persisted string to be associated with the wrong URL.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5
Mozilla Thunderbird 0.1
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Thunderbird
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Thunderbird 1.5
Mozilla Firefox
NA
CVE-2006-2776
Certain privileged UI code in Mozilla Firefox and Thunderbird prior to 1.5.0.4 calls content-defined setters on an object prototype, which allows remote malicious users to execute code at a higher privilege than intended.
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Thunderbird 0.8
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 1.0.7
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Thunderbird 1.0
NA
CVE-2006-2777
Unspecified vulnerability in Mozilla Firefox prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are execu...
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Seamonkey 1.0
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5.0.1
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2006-2778
The crypto.signText function in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow.
Mozilla Thunderbird
Mozilla Firefox
NA
CVE-2006-2787
EvalInSandbox in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to gain privileges via javascript that calls the valueOf method on objects that were created outside of the sandbox.
Mozilla Firefox 1.0
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Thunderbird 1.0
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.0.7
Mozilla Thunderbird 1.5
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox Preview Release
Mozilla Thunderbird 1.0.6
NA
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
NA
CVE-2006-2783
Mozilla Firefox and Thunderbird prior to 1.5.0.4 strip the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a BOM sequence in the middle of a dangerous ta...
Mozilla Firefox
Mozilla Thunderbird
NA
CVE-2006-2784
The PLUGINSPAGE functionality in Mozilla Firefox prior to 1.5.0.4 allows remote user-assisted malicious users to execute privileged code by tricking a user into installing missing plugins and selecting the "Manual Install" button, then using nested javascript: URLs. NOT...
Mozilla Firefox
NA
CVE-2006-1729
Mozilla Firefox 1.x prior to 1.5.0.2 and 1.0.x prior to 1.0.8, Mozilla Suite prior to 1.7.13, and SeaMonkey prior to 1.0.1 allows remote malicious users to read arbitrary files by (1) inserting the target filename into a text box, then turning that box into a file upload control,...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Mozilla Suite
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
open redirect
CVE-2024-3946
LFI
CVE-2024-25977
CVE-2024-36368
CVE-2024-23109
CVE-2024-23580
CVE-2024-23108
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »