This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mozilla:thunderbird_esr:10.0.2
Detail
VendorMozillaFirst view 2012-03-14
ProductThunderbird EsrLast view2018-06-11
Version10.0.2TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:mozilla:thunderbird_esr

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-06-11CVE-2018-5185NetworkMediumNone Requ...
52018-06-11CVE-2018-5184NetworkLowNone Requ...
7.52018-06-11CVE-2018-5183NetworkLowNone Requ...
6.82018-06-11CVE-2018-5178NetworkMediumNone Requ...
52018-06-11CVE-2018-5174NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-06-11CVE-2018-5170NetworkMediumNone Requ...
52018-06-11CVE-2018-5168NetworkLowNone Requ...
52018-06-11CVE-2018-5162NetworkLowNone Requ...
4.32018-06-11CVE-2018-5161NetworkMediumNone Requ...
7.52018-06-11CVE-2018-5159NetworkLowNone Requ...
7.52018-06-11CVE-2018-5155NetworkLowNone Requ...
7.52018-06-11CVE-2018-5154NetworkLowNone Requ...
7.52018-06-11CVE-2018-5150NetworkLowNone Requ...
102018-06-11CVE-2017-5398NetworkLowNone Requ...
9.32013-09-18CVE-2013-1738NetworkMediumNone Requ...
52013-09-18CVE-2013-1737NetworkLowNone Requ...
102013-09-18CVE-2013-1736NetworkLowNone Requ...
9.32013-09-18CVE-2013-1735NetworkMediumNone Requ...
9.32013-09-18CVE-2013-1732NetworkMediumNone Requ...
6.82013-09-18CVE-2013-1730NetworkMediumNone Requ...
4.32013-09-18CVE-2013-1728NetworkMediumNone Requ...
6.22013-09-18CVE-2013-1726LocalHighNone Requ...
6.82013-09-18CVE-2013-1725NetworkMediumNone Requ...
9.32013-09-18CVE-2013-1724NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
34% (50)CWE-399Resource Management Errors
25% (37)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (18)CWE-264Permissions, Privileges, and Access Controls
6% (10)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
4% (6)CWE-200Information Exposure
Hide | Show 12 More...
%idName
4% (6)CWE-20Improper Input Validation
2% (4)CWE-189Numeric Errors
2% (3)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (2)CWE-416Use After Free
1% (2)CWE-16Configuration
0% (1)CWE-787Out-of-bounds Write
0% (1)CWE-326Inadequate Encryption Strength
0% (1)CWE-310Cryptographic Issues
0% (1)CWE-287Improper Authentication
0% (1)CWE-275Permission Issues
0% (1)CWE-254Security Features
0% (1)CWE-190Integer Overflow or Wraparound

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:16743Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird...
oval:org.mitre.oval:def:16692Untrusted search path vulnerability in the installer in Mozilla Firefox befor...
oval:org.mitre.oval:def:16893The texImage2D implementation in the WebGL subsystem in Mozilla Firefox 4.x t...
oval:org.mitre.oval:def:21545RHSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:21341RHSA-2012:1361: xulrunner security update (Critical)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:18116USN-1611-1 -- thunderbird vulnerabilities
oval:org.mitre.oval:def:16786Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunderbird be...
oval:org.mitre.oval:def:23952ELSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:23105DEPRECATED: ELSA-2012:1362: thunderbird security update (Critical)
oval:org.mitre.oval:def:23099ELSA-2012:1361: xulrunner security update (Critical)
oval:org.mitre.oval:def:23004DEPRECATED: ELSA-2012:1361: xulrunner security update (Critical)
oval:org.mitre.oval:def:27077DEPRECATED: ELSA-2012-1361 -- xulrunner security update (critical)
oval:org.mitre.oval:def:26871DEPRECATED: ELSA-2012-1362 -- thunderbird security update (critical)
oval:org.mitre.oval:def:16729Use-after-free vulnerability in the JSDependentString::undepend function in M...
oval:org.mitre.oval:def:21630RHSA-2012:1483: thunderbird security update (Critical)
oval:org.mitre.oval:def:21071RHSA-2012:1482: firefox security update (Critical)
oval:org.mitre.oval:def:20112DSA-2584-1 iceape - several
oval:org.mitre.oval:def:19855DSA-2588-1 icedove - several
oval:org.mitre.oval:def:18575DSA-2583-1 iceweasel - several
oval:org.mitre.oval:def:16573Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox...
oval:org.mitre.oval:def:23820ELSA-2012:1482: firefox security update (Critical)
oval:org.mitre.oval:def:23474DEPRECATED: ELSA-2012:1482: firefox security update (Critical)
oval:org.mitre.oval:def:23314ELSA-2012:1483: thunderbird security update (Critical)
oval:org.mitre.oval:def:23148DEPRECATED: ELSA-2012:1483: thunderbird security update (Critical)
oval:org.mitre.oval:def:27829DEPRECATED: ELSA-2012-1482 -- firefox security update (critical)

SAINT Exploits

DescriptionLink
Mozilla Firefox XMLSerializer serializeToStream Use-after-free VulnerabilityMore info here

ExploitDB Exploits

idDescription
30474Firefox 5.0 - 15.0.1 - __exposedProps__ XCS Code Execution

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2457-2 (iceweasel - several vulnerabilities)
File : nvt/deb_2457_2.nasl
2013-09-18Name : Debian Security Advisory DSA 2458-2 (iceape - several vulnerabilities)
File : nvt/deb_2458_2.nasl
2013-09-18Name : Debian Security Advisory DSA 2513-1 (iceape - several vulnerabilities)
File : nvt/deb_2513_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2553-1 (iceweasel - several vulnerabilities)
File : nvt/deb_2553_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2583-1 (iceweasel - several vulnerabilities)
File : nvt/deb_2583_1.nasl
Hide | Show 20 More...
idDescription
2013-09-18Name : Debian Security Advisory DSA 2584-1 (iceape - several vulnerabilities)
File : nvt/deb_2584_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2588-1 (icedove - several vulnerabilities)
File : nvt/deb_2588_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox, openSUSE-SU-2012:0760-1 (MozillaFirefox,)
File : nvt/gb_suse_2012_0760_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox openSUSE-SU-2012:0899-1 (MozillaFirefox)
File : nvt/gb_suse_2012_0899_1.nasl
2012-12-13Name : SuSE Update for MozillaThunderbird openSUSE-SU-2012:0917-1 (MozillaThunderbird)
File : nvt/gb_suse_2012_0917_1.nasl
2012-12-13Name : SuSE Update for xulrunner openSUSE-SU-2012:0924-1 (xulrunner)
File : nvt/gb_suse_2012_0924_1.nasl
2012-12-13Name : SuSE Update for seamonkey openSUSE-SU-2012:0935-1 (seamonkey)
File : nvt/gb_suse_2012_0935_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox openSUSE-SU-2012:1064-1 (MozillaFirefox)
File : nvt/gb_suse_2012_1064_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox openSUSE-SU-2012:1345-1 (MozillaFirefox)
File : nvt/gb_suse_2012_1345_1.nasl
2012-12-13Name : SuSE Update for Mozilla Suite openSUSE-SU-2012:1412-1 (Mozilla Suite)
File : nvt/gb_suse_2012_1412_1.nasl
2012-12-06Name : Fedora Update for seamonkey FEDORA-2012-18931
File : nvt/gb_fedora_2012_18931_seamonkey_fc16.nasl
2012-12-06Name : Fedora Update for seamonkey FEDORA-2012-18952
File : nvt/gb_fedora_2012_18952_seamonkey_fc17.nasl
2012-12-04Name : Ubuntu Update for firefox USN-1638-3
File : nvt/gb_ubuntu_USN_1638_3.nasl
2012-11-26Name : Mozilla SeaMonkey Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_seamonkey_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Thunderbird ESR Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_thunderbird_esr_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Thunderbird Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_thunderbird_mult_vuln01_nov12_win.nasl
2012-11-26Name : FreeBSD Ports: firefox
File : nvt/freebsd_firefox72.nasl
2012-11-26Name : Mozilla Firefox ESR Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_firefox_esr_mult_vuln01_nov12_win.nasl
2012-11-26Name : Mozilla Firefox Multiple Vulnerabilities-01 November12 (Mac OS X)
File : nvt/gb_mozilla_prdts_mult_vuln01_nov12_macosx.nasl
2012-11-26Name : Mozilla Firefox Multiple Vulnerabilities-01 November12 (Windows)
File : nvt/gb_mozilla_prdts_mult_vuln01_nov12_win.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0189Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0035032

Snort® IPS/IDS

DateDescription
2015-09-08Mozilla Firefox InstallWrapper error handling code execution attempt
RuleID : 35461 - Type : BROWSER-FIREFOX - Revision : 2
2015-09-08Mozilla Firefox InstallWrapper error handling code execution attempt
RuleID : 35460 - Type : BROWSER-FIREFOX - Revision : 2
2015-02-11Mozilla Firefox XMLSerializer serializeToStream use-after-free attempt
RuleID : 32994 - Type : BROWSER-FIREFOX - Revision : 6
2015-02-11Mozilla Firefox XMLSerializer serializeToStream use-after-free attempt
RuleID : 32993 - Type : BROWSER-FIREFOX - Revision : 6
2014-03-06WAV processing buffer overflow attempt
RuleID : 29546 - Type : FILE-MULTIMEDIA - Revision : 4
Hide | Show 16 More...
DateDescription
2014-03-06WAV processing buffer overflow attempt
RuleID : 29545 - Type : FILE-MULTIMEDIA - Revision : 4
2014-03-06WAV processing buffer overflow attempt
RuleID : 29544 - Type : FILE-MULTIMEDIA - Revision : 4
2014-03-06WAV processing buffer overflow attempt
RuleID : 29543 - Type : FILE-MULTIMEDIA - Revision : 4
2014-03-06WAV processing buffer overflow attempt
RuleID : 29542 - Type : FILE-MULTIMEDIA - Revision : 3
2014-03-06WAV processing buffer overflow attempt
RuleID : 29541 - Type : FILE-MULTIMEDIA - Revision : 3
2014-03-06WAV processing buffer overflow attempt
RuleID : 29540 - Type : FILE-MULTIMEDIA - Revision : 3
2014-03-06WAV processing buffer overflow attempt
RuleID : 29539 - Type : FILE-MULTIMEDIA - Revision : 3
2014-01-10Nailed exploit kit Firefox exploit download - autopwn
RuleID : 27080 - Type : EXPLOIT-KIT - Revision : 2
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 24574 - Type : BROWSER-FIREFOX - Revision : 10
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 24573 - Type : BROWSER-FIREFOX - Revision : 9
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 24572 - Type : BROWSER-FIREFOX - Revision : 9
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 24571 - Type : BROWSER-FIREFOX - Revision : 8
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 24570 - Type : BROWSER-FIREFOX - Revision : 9
2014-01-10Mozilla Multiple Products table frames memory corruption attempt
RuleID : 23790 - Type : BROWSER-FIREFOX - Revision : 8
2014-01-10Mozilla Multiple Products table frames memory corruption attempt
RuleID : 23789 - Type : BROWSER-FIREFOX - Revision : 11
2014-01-10Mozilla Firefox IDB use-after-free attempt
RuleID : 23212 - Type : BROWSER-FIREFOX - Revision : 10

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-11-26Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201811-13.nasl - Type : ACT_GATHER_INFO
2018-10-03Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201810-01.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1189.nasl - Type : ACT_GATHER_INFO
2018-06-12Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1032.nasl - Type : ACT_GATHER_INFO
2018-05-31Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-1415.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-05-30Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-1725.nasl - Type : ACT_GATHER_INFO
2018-05-30Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-1726.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1125.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1126.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote Debian host is missing a security update.
File : debian_DLA-1382.nasl - Type : ACT_GATHER_INFO
2018-05-25Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4209.nasl - Type : ACT_GATHER_INFO
2018-05-22Name : The remote Windows host contains a mail client that is affected by multiple v...
File : mozilla_thunderbird_52_8.nasl - Type : ACT_GATHER_INFO
2018-05-21Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2018-1414.nasl - Type : ACT_GATHER_INFO
2018-05-17Name : A web browser installed on the remote macOS or Mac OS X host is affected by m...
File : macos_firefox_52_8_esr.nasl - Type : ACT_GATHER_INFO
2018-05-17Name : A web browser installed on the remote macOS or Mac OS X host is affected by m...
File : macos_firefox_60_0_0.nasl - Type : ACT_GATHER_INFO
2018-05-17Name : A web browser installed on the remote Windows host is affected by multiple cr...
File : mozilla_firefox_52_8_esr.nasl - Type : ACT_GATHER_INFO
2018-05-17Name : A web browser installed on the remote Windows host is affected by multiple cr...
File : mozilla_firefox_60_0_0.nasl - Type : ACT_GATHER_INFO
2018-05-14Name : The remote Debian host is missing a security update.
File : debian_DLA-1376.nasl - Type : ACT_GATHER_INFO
2018-05-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4199.nasl - Type : ACT_GATHER_INFO
2018-05-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_5aefc41ed3044ec88c82824f84f08244.nasl - Type : ACT_GATHER_INFO
2017-07-13Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-0459.nasl - Type : ACT_GATHER_INFO
2017-07-13Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-0461.nasl - Type : ACT_GATHER_INFO
2017-07-13Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-0498.nasl - Type : ACT_GATHER_INFO
2017-05-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201705-06.nasl - Type : ACT_GATHER_INFO
2017-05-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201705-07.nasl - Type : ACT_GATHER_INFO