Search CVE reports

161 – 170 of 227 results

Detailed view

Sort by:

CVE-2008-5500

Low priority

Some fixes available 31 of 36

The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) and possibly trigger...

8 affected packages

firefox-3.0, xulrunner, iceape, firefox, mozilla-thunderbird...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox-3.0	—	—	—	—
xulrunner	—	—	—	—
iceape	—	—	—	—
firefox	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5052

Low priority

Some fixes available 16 of 19

The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5024

Low priority

Some fixes available 16 of 19

Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, which allows remote attackers...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5023

Medium priority

Some fixes available 12 of 15

Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS...

7 affected packages

firefox, firefox-3.0, iceape, iceweasel, seamonkey...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
iceweasel	—	—	—	—
seamonkey	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5022

Medium priority

Some fixes available 16 of 19

The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5021

Medium priority

Some fixes available 16 of 19

nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5019

Medium priority

Some fixes available 12 of 15

The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and execute arbitrary JavaScript with...

7 affected packages

firefox, firefox-3.0, iceweasel, iceape, seamonkey...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceweasel	—	—	—	—
iceape	—	—	—	—
seamonkey	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5018

Low priority

Some fixes available 16 of 19

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5017

Low priority

Some fixes available 16 of 19

Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a...

10 affected packages

firefox, firefox-3.0, iceape, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
firefox-3.0	—	—	—	—
iceape	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

CVE-2008-5016

Low priority

Some fixes available 16 of 19

The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion...

10 affected packages

iceape, firefox, firefox-3.0, icedove, iceweasel...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
iceape	—	—	—	—
firefox	—	—	—	—
firefox-3.0	—	—	—	—
icedove	—	—	—	—
iceweasel	—	—	—	—
mozilla-thunderbird	—	—	—	—
seamonkey	—	—	—	—
thunderbird	—	—	—	—
xulrunner	—	—	—	—
xulrunner-1.9	—	—	—	—

Export to JSON

Results by page: