) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:mozilla:thunderbird:6.0
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2011-2997 |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Published: September 28, 2011; 8:55:01 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2011-2995 |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Published: September 28, 2011; 8:55:01 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2011-2372 |
Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the holding of the Enter key, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site. Published: September 28, 2011; 8:55:01 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
| CVE-2011-1187 |
Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an "error message leak." Published: March 10, 2011; 9:01:18 PM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |