Mozilla Thunderbird Multiple Vulnerabilities Feb-09 (Linux) Network Vulnerability

Summary

The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.

Impact

Successful exploitation may let the attacker cause remote code execution or may cause memory/application crash to conduct denial of service attack. Impact Level: System/Application

Solution

Upgrade to Thunderbird version 2.0.0.21 http://www.mozilla.com/en-US/thunderbird

Insight

Flaws are in vectors related to the layout engine and destruction of arbitrary layout objects by the 'nsViewManager::Composite' function.

Affected

Thunderbird version prior to 2.0.0.21 on Linux.

References

http://secunia.com/advisories/33799
http://www.mozilla.org/security/announce/2009/mfsa2009-01.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0352, CVE-2009-0353

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

AppSocket DoS
CiscoKits CCNA TFTP Server 'Write' Command Denial Of Service Vulnerability
Firefox XSL Parsing Vulnerability (Linux)
ClamAV Multiple Vulnerabilities (Linux)
CA kmxfw.sys Code Execution and DoS Vulnerabilities

Take action and discover your vulnerabilities