VulnerableCode Package Details - pkg:rpm/redhat/thunderbird@1.5.0.12-25?arch=el4

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/thunderbird@1.5.0.12-25?arch=el4

Essentials
History (19)

purl	pkg:rpm/redhat/thunderbird@1.5.0.12-25?arch=el4

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (19)

Vulnerability	Summary	Fixed by
VCID-16d6-e24t-dfb7 Aliases: CVE-2009-3384	Firefox integer underflow in FTP directory list parser	There are no reported fixed by versions.
VCID-1n9c-e6em-kbb6 Aliases: CVE-2009-3077	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-2jhf-j64s-gygy Aliases: CVE-2009-0689	Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer.Update: The underlying flaw in the dtoa routines used by Mozilla appears to be essentially the same as that reported against the libc gdtoa routine by Maksymilian Arciemowicz.	There are no reported fixed by versions.
VCID-3bf4-ms9e-x3dq Aliases: CVE-2009-3076	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-53kn-ev4f-dufh Aliases: CVE-2009-2463	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-5bdt-dd2k-c7gq Aliases: CVE-2009-3376	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-85v1-yb4g-bqa4 Aliases: CVE-2010-0163	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-89ja-f5vc-83d3 Aliases: CVE-2010-0159	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-8kzv-qk9n-9ydf Aliases: CVE-2009-1571	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-9jkh-xn2d-3bdx Aliases: CVE-2009-3979	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-b76x-3z8j-4fa9 Aliases: CVE-2009-3274	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-cwsk-1qr2-1fed Aliases: CVE-2009-2466	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-jwsm-57gb-jkb4 Aliases: CVE-2009-3075	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-sapd-n7mr-eudc Aliases: CVE-2009-2470	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-usb1-ure3-77ft Aliases: CVE-2010-0171	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-v7mb-nqbm-93bs Aliases: CVE-2009-2462	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-wqza-9p8v-4kek Aliases: CVE-2009-3072	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-y1cq-jzte-p3hq Aliases: CVE-2010-0169	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.
VCID-yn4z-ymst-1bew Aliases: CVE-2009-3380	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:58:06.176664+00:00	RedHat Importer	Affected by	VCID-sapd-n7mr-eudc	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2470.json	38.0.0
2026-04-01T14:58:05.902849+00:00	RedHat Importer	Affected by	VCID-cwsk-1qr2-1fed	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2466.json	38.0.0
2026-04-01T14:58:05.707499+00:00	RedHat Importer	Affected by	VCID-53kn-ev4f-dufh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2463.json	38.0.0
2026-04-01T14:58:05.584660+00:00	RedHat Importer	Affected by	VCID-v7mb-nqbm-93bs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2462.json	38.0.0
2026-04-01T14:57:54.402801+00:00	RedHat Importer	Affected by	VCID-b76x-3z8j-4fa9	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3274.json	38.0.0
2026-04-01T14:57:54.028919+00:00	RedHat Importer	Affected by	VCID-1n9c-e6em-kbb6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3077.json	38.0.0
2026-04-01T14:57:53.876362+00:00	RedHat Importer	Affected by	VCID-3bf4-ms9e-x3dq	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3076.json	38.0.0
2026-04-01T14:57:53.715643+00:00	RedHat Importer	Affected by	VCID-jwsm-57gb-jkb4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3075.json	38.0.0
2026-04-01T14:57:53.485168+00:00	RedHat Importer	Affected by	VCID-wqza-9p8v-4kek	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3072.json	38.0.0
2026-04-01T14:57:43.788642+00:00	RedHat Importer	Affected by	VCID-yn4z-ymst-1bew	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3380.json	38.0.0
2026-04-01T14:57:43.647417+00:00	RedHat Importer	Affected by	VCID-5bdt-dd2k-c7gq	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3376.json	38.0.0
2026-04-01T14:57:43.417045+00:00	RedHat Importer	Affected by	VCID-16d6-e24t-dfb7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3384.json	38.0.0
2026-04-01T14:57:29.051294+00:00	RedHat Importer	Affected by	VCID-2jhf-j64s-gygy	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0689.json	38.0.0
2026-04-01T14:57:27.255429+00:00	RedHat Importer	Affected by	VCID-9jkh-xn2d-3bdx	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3979.json	38.0.0
2026-04-01T14:57:23.977463+00:00	RedHat Importer	Affected by	VCID-8kzv-qk9n-9ydf	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1571.json	38.0.0
2026-04-01T14:57:23.884749+00:00	RedHat Importer	Affected by	VCID-89ja-f5vc-83d3	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0159.json	38.0.0
2026-04-01T14:57:22.630135+00:00	RedHat Importer	Affected by	VCID-85v1-yb4g-bqa4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0163.json	38.0.0
2026-04-01T14:57:22.348815+00:00	RedHat Importer	Affected by	VCID-usb1-ure3-77ft	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0171.json	38.0.0
2026-04-01T14:57:22.281790+00:00	RedHat Importer	Affected by	VCID-y1cq-jzte-p3hq	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0169.json	38.0.0