Search CVE reports

501 – 510 of 542 results

Detailed view

Sort by:

CVE-2008-5503

Low priority

Some fixes available 17 of 20

The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not perform any security checks related to the same-domain policy, which allows remote...

7 affected packages

firefox, firefox-3.0, iceape, mozilla-thunderbird, seamonkey...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5502

Low priority

Some fixes available 14 of 17

The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) via vectors that trigger memory corruption,...

6 affected packages

iceape, firefox-3.0, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
iceape	—	—	—	—
firefox-3.0	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5501

Low priority

Some fixes available 14 of 18

The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service via vectors that trigger an assertion failure.

6 affected packages

iceape, firefox-3.0, mozilla-thunderbird, seamonkey, thunderbird, xulrunner-1.9

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
iceape	—	—	—	—
firefox-3.0	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5500

Low priority

Some fixes available 31 of 36

The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) and possibly trigger...

8 affected packages

firefox-3.0, xulrunner, iceape, firefox, mozilla-thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox-3.0	—	—	—	—
xulrunner	—	—	—	—
iceape	—	—	—	—
firefox	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5052

Low priority

Some fixes available 16 of 19

The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5024

Low priority

Some fixes available 16 of 19

Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, which allows remote attackers...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5023

Medium priority

Some fixes available 12 of 15

Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS...

7 affected packages

firefox, firefox-3.0, iceape, iceweasel, seamonkey...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
iceweasel	—	—	—	—
seamonkey	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5022

Medium priority

Some fixes available 16 of 19

The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5021

Medium priority

Some fixes available 16 of 19

nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5019

Medium priority

Some fixes available 12 of 15

The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and execute arbitrary JavaScript with...

7 affected packages

firefox, firefox-3.0, iceweasel, iceape, seamonkey...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceweasel	—	—	—	—
iceape	—	—	—	—
seamonkey	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

Export to JSON

Results by page: