GCVE - cpe:2.3:a:mozilla:seamonkey:*:beta5:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mozilla:seamonkey:*:beta5:*:*:*:*:*:*

part: a version: * update: beta5

Vendor	Mozilla (`be1b0d4e-21a7-5a25-9982-bbda6ef43ec1`)
Product	Seamonkey (`9b67c4f8-e83e-55c8-8c3d-4a52e7d74102`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:gitlab/seamonkey-project/seamonkey-2.53-comm`	purl2cpe	2026-06-01 10:17:53.450939
`pkg:mozilla/seamonkey`	purl2cpe	2026-06-01 10:17:53.450941
`pkg:rpm/fedora/seamonkey`	purl2cpe	2026-06-01 10:17:53.450943

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-0462`	vulnerable	2026-06-03 14:31:37.167804	Details available Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:31.041Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html http://secunia.com/advisories/48402 http://secunia.com/advisories/48624 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html http://www.ubuntu.com/usn/USN-1400-5	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0460`	vulnerable	2026-06-03 14:31:37.161116	Details available Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict write access to the window.fullScreen object, which allows remote attackers to spoof the user interface via a crafted web page. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:31.056Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html http://secunia.com/advisories/48402 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html http://www.ubuntu.com/usn/USN-1400-5 http://secunia.com/advisories/48359	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0459`	vulnerable	2026-06-03 14:31:37.157681	Details available The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via dynamic modification of a keyframe followed by access to the cssText of the keyframe. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:31.010Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html http://secunia.com/advisories/48402 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html http://www.ubuntu.com/usn/USN-1400-5 http://secunia.com/advisories/48359	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0455`	vulnerable	2026-06-03 14:31:37.130250	Details available Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict drag-and-drop operations on javascript: URLs, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web page, related to a "DragAndDropJacking" issue. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:30.984Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html http://secunia.com/advisories/48402 http://www.mandriva.com/security/advisories?name=MDVSA-2012:031 http://secunia.com/advisories/48624 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0454`	vulnerable	2026-06-03 14:31:37.126938	Details available Use-after-free vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 on 32-bit Windows 7 platforms allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving use of the file-open dialog in a child window, related to the IUnknown_QueryService function in the Windows shlwapi.dll library. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:31.073Z Open on db.gcve.eu Reference links http://secunia.com/advisories/48402 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14258 http://secunia.com/advisories/48629 http://www.mozilla.org/security/announce/2012/mfsa2012-12.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0451`	vulnerable	2026-06-03 14:31:37.111196	Details available CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote web servers to bypass intended Content Security Policy (CSP) restrictions and possibly conduct cross-site scripting (XSS) attacks via crafted HTTP headers. Published: 2012-03-14T19:00:00.000Z Updated: 2024-08-06T18:23:30.980Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html http://secunia.com/advisories/48402 https://bugzilla.mozilla.org/show_bug.cgi?id=717511 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html http://www.ubuntu.com/usn/USN-1400-5	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0450`	vulnerable	2026-06-03 14:31:37.096225	Details available Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations. Published: 2012-02-01T16:00:00.000Z Updated: 2024-08-06T18:23:31.099Z Open on db.gcve.eu Reference links http://www.mozilla.org/security/announce/2012/mfsa2012-09.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14670 http://osvdb.org/78741 https://exchange.xforce.ibmcloud.com/vulnerabilities/72869 https://bugzilla.mozilla.org/show_bug.cgi?id=716868	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0447`	vulnerable	2026-06-03 14:31:36.984364	Details available Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize data for image/vnd.microsoft.icon images, which allows remote attackers to obtain potentially sensitive information by reading a PNG image that was created through conversion from an ICO image. Published: 2012-02-01T16:00:00.000Z Updated: 2024-08-06T18:23:31.002Z Open on db.gcve.eu Reference links https://bugzilla.mozilla.org/show_bug.cgi?id=710079 https://exchange.xforce.ibmcloud.com/vulnerabilities/72856 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14912 http://secunia.com/advisories/49055 http://www.mozilla.org/security/announce/2012/mfsa2012-06.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0446`	vulnerable	2026-06-03 14:31:36.981359	Details available Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to inject arbitrary web script or HTML via a (1) web page or (2) Firefox extension, related to improper enforcement of XPConnect security restrictions for frame scripts that call untrusted objects. Published: 2012-02-01T16:00:00.000Z Updated: 2024-08-06T18:23:31.012Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/51752 http://secunia.com/advisories/49055 https://bugzilla.mozilla.org/show_bug.cgi?id=705651 https://exchange.xforce.ibmcloud.com/vulnerabilities/72837 http://www.mandriva.com/security/advisories?name=MDVSA-2012:013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0445`	vulnerable	2026-06-03 14:31:36.978337	Details available Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to bypass the HTML5 frame-navigation policy and replace arbitrary sub-frames by creating a form submission target with a sub-frame's name attribute. Published: 2012-02-01T16:00:00.000Z Updated: 2024-08-06T18:23:31.045Z Open on db.gcve.eu Reference links https://bugzilla.mozilla.org/show_bug.cgi?id=701071 https://exchange.xforce.ibmcloud.com/vulnerabilities/72835 http://secunia.com/advisories/49055 http://osvdb.org/78735 http://www.mandriva.com/security/advisories?name=MDVSA-2012:013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0443`	vulnerable	2026-06-03 14:31:36.963454	Details available Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Published: 2012-02-01T16:00:00.000Z Updated: 2024-08-06T18:23:31.018Z Open on db.gcve.eu Reference links https://bugzilla.mozilla.org/show_bug.cgi?id=711651 https://bugzilla.mozilla.org/show_bug.cgi?id=665578 https://bugzilla.mozilla.org/show_bug.cgi?id=712169 https://bugzilla.mozilla.org/show_bug.cgi?id=695076 https://bugzilla.mozilla.org/show_bug.cgi?id=714600	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.