CVE search results

2971 – 2980 of 3080 results

Detailed view

Sort by:

CVE-2006-4340

Medium priority

Some fixes available 5 of 6

Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-4712

Medium priority

Fixed

Multiple cross-site scripting (XSS) vulnerabilities in Sage 1.3.6 allow remote attackers to inject arbitrary web script or HTML via JavaScript in a content:encoded element within an item element in an RSS feed, as demonstrated by...

1 affected package

firefox-sage

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox-sage	—	—	—	—	—

CVE-2006-4711

Medium priority

Fixed

Multiple cross-site scripting (XSS) vulnerabilities in Sage allow remote attackers to inject arbitrary web script or HTML via an Atom 1.0 feed, as demonstrated by certain test cases of the James M. Snell Atom 1.0 feed reader test suite.

1 affected package

firefox-sage

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox-sage	—	—	—	—	—

CVE-2006-4561

Medium priority

Fixed

Mozilla Firefox 1.5.0.6 allows remote attackers to execute arbitrary JavaScript in the context of the browser's session with an arbitrary intranet web server, by hosting script on an Internet web server that can be made...

1 affected package

firefox

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—

CVE-2006-4253

Medium priority

Some fixes available 9 of 10

Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML...

6 affected packages

firefox, firefox-3.0, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-3.0	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-3812

Medium priority

Fixed

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-3811

Medium priority

Fixed

Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Javascript that...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-3810

Medium priority

Fixed

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-3809

Medium priority

Fixed

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data...

6 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
mozilla-thunderbird	—	—	—	—	—
xulrunner	—	—	—	—	—

CVE-2006-3808

Medium priority

Fixed

Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function to an eval method on...

5 affected packages

firefox, firefox-granparadiso, lightning-sunbird, midbrowser, xulrunner

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
firefox-granparadiso	—	—	—	—	—
lightning-sunbird	—	—	—	—	—
midbrowser	—	—	—	—	—
xulrunner	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports