Summary
The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation may let the attacker cause remote code execution or may cause memory/application crash to conduct denial of service attack.
Impact Level: System/Application
Solution
Upgrade to Thunderbird version 2.0.0.21
http://www.mozilla.com/en-US/thunderbird
Insight
Flaws are in vectors related to the layout engine and destruction of arbitrary layout objects by the 'nsViewManager::Composite' function.
Affected
Thunderbird version prior to 2.0.0.21 on Windows.
References
Severity
Classification
-
CVE CVE-2009-0352, CVE-2009-0353 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Easy RM to MP3 Converter Buffer Overflow Vulnerability
- ClamAV 'find_stream_bounds()' PDF File Processing Denial Of Service Vulnerability
- Apple iTunes Malformed .mov File Buffer Overflow Vulnerability
- Azeotech DAQFactory NETB Datagram Parsing Stack Buffer Overflow Vulnerability
- Checkpoint Firewall-1 UDP denial of service