- Home
- CVEs with nessus.description==The+installed+version+of+Thunderbird+is+earlier+than+14.0+and+thus%2C+is+potentially+affected+by+the+following+security+issues+%3A%0A%0A++-+Several+memory+safety+issues+exist%2C+some+of+which+could+++++potentially+allow+arbitrary+code+execution.%0A++++%28CVE-2012-1948%2C+CVE-2012-1949%29%0A%0A++-+Several+memory+safety+issues+exist+related+to+the+Gecko+++++layout+engine.+%28CVE-2012-1951%2C+CVE-2012-1952%2C+++++CVE-2012-1953%2C+CVE-2012-1954%29%0A%0A++-+An+error+related+to+JavaScript+functions+++++%27history.forward%27+and+%27history.back%27+can+allow+++++incorrect+URLs+to+be+displayed.+%28CVE-2012-1955%29%0A%0A++-+Cross-site+scripting+attacks+are+possible+due+to+an+++++error+related+to+the+%27%3Cembed%3E%27+tag+within+an+RSS+++++%27%3Cdescription%3E%27+element.+%28CVE-2012-1957%29%0A%0A++-+A+use-after-free+error+exists+related+to+the+method+++++%27nsGlobalWindow%3A%3APageHidden%27.+%28CVE-2012-1958%29%0A%0A++-+An+error+exists+that+can+allow+%27same-compartment+++++security+wrappers%27+%28SCSW%29+to+be+bypassed.%0A++++%28CVE-2012-1959%29%0A%0A++-+An+out-of-bounds+read+error+exists+related+to+the+color+++++management+library+%28QCMS%29.+%28CVE-2012-1960%29+++%0A++-+The+%27X-Frames-Options%27+header+is+ignored+if+it+is+++++duplicated.+%28CVE-2012-1961%29%0A%0A++-+A+memory+corruption+error+exists+related+to+the+method+++++%27JSDependentString%3A%3Aundepend%27.+%28CVE-2012-1962%29%0A%0A++-+An+error+related+to+the+%27Content+Security+Policy%27+%28CSP%29+++++implementation+can+allow+the+disclosure+of+OAuth+2.0+++++access+tokens+and+OpenID+credentials.+%28CVE-2012-1963%29%0A%0A++-+An+error+exists+related+to+the+%27javascript%3A%27+URL+that+++++can+allow+scripts+to+run+at+elevated+privileges+outside+++++the+sandbox.+%28CVE-2012-1967%29
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top