Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/2519?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2519?format=api", "vulnerability_id": "VCID-b1h3-b4m1-97g3", "summary": "Jonathan Watt and Michal Zalewski independently reported timing dependent\ntestcases that trigger crashes at the same place during text display.\nWe have seen no demonstration that these crashes could be reliably\nexploited, but they do show evidence of memory corruption so we presume\nthey could be.Thunderbird shares the browser engine with Firefox\nand could be vulnerable if JavaScript were to be enabled in mail. This is not\nthe default setting and we strongly discourage users from enabling\nJavaScript in mail.", "aliases": [ { "alias": "CVE-2006-4253" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1098?format=api", "purl": "pkg:mozilla/SeaMonkey@1.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@1.0.5" } ], "affected_packages": [], "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4253", "reference_id": "CVE-2006-4253", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4253" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2006-59", "reference_id": "mfsa2006-59", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2006-59" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b1h3-b4m1-97g3" }