- Home
- CVEs with nessus.description==The installed version of Thunderbird is earlier than 8.0 and thus, is potentially affected by the following security issues :
- Certain invalid sequences are not handled properly in 'Shift-JIS' encoding and can allow cross-site scripting attacks. (CVE-2011-3648)
- The addition of the 'Azure' graphics functionality re- introduced a cross-origin information disclosure issue previously described in CVE-2011-2986. (CVE-2011-3649)
- Profiling JavaScript files with many functions can cause the application to crash. It may be possible to trigger this behavior even when the debugging APIs are not being used. (CVE-2011-3650)
- Multiple memory safety issues exist. (CVE-2011-3651)
- An unchecked memory allocation failure can cause the application to crash. (CVE-2011-3652)
- An issue with WebGL graphics and GPU drivers can allow allow cross-origin image theft. (CVE-2011-3653)
- An error exists related to SVG 'mpath' linking to a non-SVG element and can result in potentially exploitable application crashes. (CVE-2011-3654)
- An error in internal privilege checking can allow web content to obtain elevated privileges.
(CVE-2011-3655)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top