Vulnerabilities > Mozilla > Thunderbird > 1.5.0.11

DATE CVE VULNERABILITY TITLE RISK
2008-09-24 CVE-2008-3835 Permissions, Privileges, and Access Controls vulnerability in Mozilla Firefox, Seamonkey and Thunderbird
The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox before 2.0.0.17, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code via unknown vectors.
network
low complexity
mozilla CWE-264
7.5
7.5
2007-06-01 CVE-2007-2868 Code Injection vulnerability in Mozilla Firefox, Seamonkey and Thunderbird
Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger memory corruption.
network
mozilla CWE-94
critical
 9.3
9.3
2007-06-01 CVE-2007-2867 Buffer Errors vulnerability in Mozilla Firefox, Seamonkey and Thunderbird
Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) via vectors related to dangling pointers, heap corruption, signed/unsigned, and other issues.
network
mozilla CWE-119
critical
 9.3
9.3