Search for packages
| purl | pkg:rpm/redhat/seamonkey@1.0.9-0.47?arch=el3 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-16d6-e24t-dfb7
Aliases: CVE-2009-3384 |
Firefox integer underflow in FTP directory list parser | There are no reported fixed by versions. |
|
VCID-2jhf-j64s-gygy
Aliases: CVE-2009-0689 |
Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer.Update: The underlying flaw in the dtoa routines used by Mozilla appears to be essentially the same as that reported against the libc gdtoa routine by Maksymilian Arciemowicz. | There are no reported fixed by versions. |
|
VCID-5bdt-dd2k-c7gq
Aliases: CVE-2009-3376 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. | There are no reported fixed by versions. |
|
VCID-aw3w-yap1-u7cx
Aliases: CVE-2009-3375 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. | There are no reported fixed by versions. |
|
VCID-b76x-3z8j-4fa9
Aliases: CVE-2009-3274 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. | There are no reported fixed by versions. |
|
VCID-d5ha-6epq-afd4
Aliases: CVE-2009-3385 |
Security researcher Georgi Guninski reported that scriptable plugin content, such as Flash objects, could be loaded and executed in SeaMonkey mail messages by embedding the content in an iframe inside the message. If a user were to reply to or forward such a message, malicious JavaScript embedded in the plugin content could potentially steal the contents of the message or files from the local filesystem.Thunderbird was not affected by this issue. | There are no reported fixed by versions. |
|
VCID-qqg4-kz4u-hbh8
Aliases: CVE-2009-1563 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. | There are no reported fixed by versions. |
|
VCID-yn4z-ymst-1bew
Aliases: CVE-2009-3380 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||