This host is installed with Mozilla Thunderbird ESR and is prone to multiple vulnerabilities.

Successful exploitation will allow attackers to execute arbitrary code, memory corruption, bypass certain security restrictions and compromise a user's system. Impact Level: System/Application

Upgrade to Mozilla Thunderbird ESR version 17.0.3 or later, For updates refer to http://www.mozilla.com/en-US/thunderbird

- Error when handling a WebIDL object - Error in displaying the content of a 407 response of a proxy - Unspecified errors in 'nsSaveAsCharset::DoCharsetConversion()' function, Chrome Object Wrappers (COW) and in System Only Wrappers (SOW). - Use-after-free error in the below functions 'nsDisplayBoxShadowOuter::Paint()' 'nsPrintEngine::CommonPrint()' 'nsOverflowContinuationTracker::Finish()' 'nsImageLoadingContent::OnStopContainer()' - Out-of-bound read error in below functions 'ClusterIterator::NextCluster()' 'nsCodingStateMachine::NextState()' 'mozilla::image::RasterImage::DrawFrameTo()', when rendering GIF images.

Mozilla Thunderbird ESR version 17.x prior to 17.0.3 on Mac OS X

• http://packetstormsecurity.com/files/cve/CVE-2013-0784
• http://secunia.com/advisories/52249
• http://secunia.com/advisories/52280
• http://www.mozilla.org/security/announce/2013/mfsa2013-28.html
• https://bugzilla.mozilla.org/show_bug.cgi?id=827070

---

Updated on 2015-03-25