Mozilla Thunderbird Multiple Vulnerabilities Feb-09 (Linux) Network Vulnerability

Summary

The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.

Impact

Successful exploitation may let the attacker cause remote code execution or may cause memory/application crash to conduct denial of service attack. Impact Level: System/Application

Solution

Upgrade to Thunderbird version 2.0.0.21 http://www.mozilla.com/en-US/thunderbird

Insight

Flaws are in vectors related to the layout engine and destruction of arbitrary layout objects by the 'nsViewManager::Composite' function.

Affected

Thunderbird version prior to 2.0.0.21 on Linux.

References

http://secunia.com/advisories/33799
http://www.mozilla.org/security/announce/2009/mfsa2009-01.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0352, CVE-2009-0353
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader PDF Handling Denial Of Service Vulnerability (Linux)
Firefox XSL Parsing Vulnerability (Win)
CUPS IPP Use-After-Free Denial of Service Vulnerability
ClamAV Denial of Service Vulnerability (Linux)
Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Win)

Take action and discover your vulnerabilities