Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2006/04/21 3:41 p.m.4 views

security flaw

The WYSIWYG rendering engine "rich mail" editor in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which i...

9.3CVSS5.8AI score0.07066EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2006/02/26 12:0 a.m.26 views

mozThunDoS.txt

Mozilla Thunderbird : Remote Code Execution & Denial of Service //----- Advisory Program : Mozilla Thunderbird Homepage : http://www.mozilla.com/thunderbird/ Tested version : Denial of service application crash : iframe src="javascript:parent.document.write'Found by www.s...

7.4AI score
Exploits0
Prion
Prion
added 2006/02/24 10:2 p.m.19 views

Design/Logic Flaw

The WYSIWYG rendering engine "rich mail" editor in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which i...

9.3CVSS6.1AI score0.07066EPSS
Exploits1References41Affected Software1
UbuntuCve
UbuntuCve
added 2006/02/24 10:2 p.m.24 views

CVE-2006-0884

The WYSIWYG rendering engine "rich mail" editor in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which i...

9.3CVSS5.9AI score0.07066EPSS
Exploits1References2
Rows per page
Query Builder