| 9! | Multiple Mozilla / Firefox / Seamonkey / Thunderbird security vulnerabilities
updated since 27.07.2006
|
 | | Multiple vulnerabilities allow unrestricted code execution. Can be used for hidden malware installation. |
| 9! | Multiple Mozilla / Firefox / Thunderbird / Netscape / Seamonkey security vulnerabilities
updated since 02.06.2006
|
| | Localzone scripting with code execution, memory corruption, HTTP response splitting, array overflow, javascript filtering bypass. |
| 8! | Mozilla browsers and mail agents memory corruption
|
| | Memory corruption on displaying corrupted HTML tables. Can be used for silent malware installation. |
| | Mozilla Thunderbird code execution
|
| | IFRAME SRC attribute allows javascript execution. |
| | Mozilla Thunderbird / Mozilla weak authentication downgrade
|
| | If SMTP authentication with CRAM-MD5 or TLS hadshake fails mail agent downgrades to plain text authentication, allowing active man-in-the-middle attacks. |
| 8! | Multiple Mozilla / Firefox / Funderbird browsers and mail agent vulnerabilities
updated since 13.07.2005
|
| | Multiple crossite scripting vulnerabilities, bypassing scripting protection, code execution. |
| 6! | Multiple Mozilla / Firefox / Thunderbird browsers bugs
updated since 02.03.2005
|
| | Symbolic links problem, crossite XML data access, form autocomplete feature information leak, buffer overflows, data spoofing, invalid certificates handlings. |
| | |
