CVE search results

71 – 80 of 226 results

Detailed view

Sort by:

CVE-2010-3770

Low priority

Some fixes available 12 of 14

Multiple cross-site scripting (XSS) vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via...

5 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3768

Low priority

Some fixes available 12 of 14

Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system's...

5 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3767

Medium priority

Some fixes available 12 of 14

Integer overflow in the NewIdArray function in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allows remote attackers to execute arbitrary code via a JavaScript array with many elements.

5 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3766

Medium priority

Some fixes available 12 of 14

Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allows remote attackers to execute arbitrary code via vectors involving a change to an nsDOMAttribute node.

5 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2009-5017

Medium priority

Ignored

Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong UTF-8 encoding, which makes it easier for remote attackers to bypass cross-site scripting (XSS) protection mechanisms via a crafted string, a...

6 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3765

High priority

Some fixes available 16 of 18

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code...

6 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird, xulrunner-1.9.2

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3183

Medium priority

Some fixes available 24 of 29

The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly...

7 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3182

Low priority

Some fixes available 24 of 29

A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 on Linux places a zero-length directory name in...

7 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3180

Medium priority

Some fixes available 24 of 29

Use-after-free vulnerability in the nsBarProp function in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 allows remote attackers to...

7 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

CVE-2010-3179

Medium priority

Some fixes available 24 of 29

Stack-based buffer overflow in the text-rendering functionality in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 allows remote attackers...

7 affected packages

firefox, firefox-3.0, firefox-3.5, seamonkey, thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
firefox-3.5	—	—	—	—	—
seamonkey	—	—	—	—	—
thunderbird	—	—	—	—	—
xulrunner-1.9.1	—	—	—	—	—
xulrunner-1.9.2	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports