Summary
This host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allow attackers to cause a denial of service or execute arbitrary code in the context of the browser.
Impact Level: System/Application
Solution
Upgrade to Thunderbird version to 17.0.2 or later, For updates refers to http://www.mozilla.org/en-US/thunderbird/
Insight
- An error within the 'CharDistributionAnalysis::HandleOneChar()' can be exploited to cause a buffer overflow.
- Unspecified error in the browser engine can be exploited to corrupt memory.
Affected
Thunderbird version before 17.0.2 on Mac OS X
References
Severity
Classification
-
CVE CVE-2013-0760, CVE-2013-0770 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)
- Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)
- Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X