[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255227

 
 

909

 
 

198741

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26506 Download | Alert*

Mozilla Thunderbird 60.5: A crash can occur when processing a crafted S/MIME message or an XPI package containing a crafted signature. This can be used as a denial-of-service (DOS) attack because Thunderbird reopens the last seen message on restart, triggering the crash again.

Mozilla Thunderbird 91.3 : Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures.

Mozilla Thunderbird 102.9.1: Thunderbird users who use the Matrix chat protocol were vulnerable to a denial-of-service attack.

Mozilla Thunderbird 102.7.1: The host is installed with Mozilla Thunderbird 68.x before 102.7.1 and is prone to an improper certificate validation vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to make the Mail signed with a revoked certificate to be displayed as having a valid signature.

Mozilla Firefox ESR 78.9 and Mozilla Thunderbird 78.9: An out of date graphics library (Angle) likely contained vulnerabilities that could potentially be exploited.

Mozilla Thunderbird before 78.8.1: Thunderbird unprotects a secret OpenPGP key prior to using it for a decryption, signing or key import task. If the task runs into a failure, the secret key may remain in memory in its unprotected state.

Mozilla Thunderbird before 78.9.1: Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user ID, or by adding another user ID. If Thunderbird imports and accepts the crafted key, the Thunderbird user may falsely conclude that the false user ID belongs to the c ...

Mozilla Thunderbird before 78.9.1: When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious library has been copied to a directory that is contained in the search p ...

The host is installed with Adobe InDesign 18.x before 18.5.1 or 17.x through 17.4.2 and is prone to a NULL pointer dereference vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause application denial-of-service.

The host is installed with OpenSSL 3.0.0 and is prone to an infinite loop vulnerability. A flaw is present in the SM2 decryption code. Successful exploitation could allow attackers to cause denial of service.


Pages:      Start    1559    1560    1561    1562    1563    1564    1565    1566    1567    1568    1569    1570    1571    1572    ..   2650

© SecPod Technologies