Mozilla Thunderbird Multiple Vulnerabilities-01 September14 (Windows) Network Vulnerability

Summary

This host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to disclose potentially sensitive information and compromise a user's system. Impact Level: Application/System

Solution

Upgrade to Mozilla Thunderbird version 24.8 or 31.1 or later, For updates refer http://www.mozilla.com/en-US/thunderbird

Insight

Multiple flaws exist due to, - A use-after-free error when setting text directionality. - An unspecified error.

Affected

Mozilla Thunderbird 24.x before 24.8 and 31.x before 31.1 on Windows

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://www.mozilla.org/security/announce/2014/mfsa2014-67.html
http://www.osvdb.com/110717
http://www.osvdb.com/110720
https://www.mozilla.org/security/announce/2014/mfsa2014-72.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-1562, CVE-2014-1567

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities -01 May 13 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Dec13 (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
Adobe Air Multiple Vulnerabilities - October 12 (Windows)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)

Take action and discover your vulnerabilities