Summary
The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation may let the attacker cause remote code execution or may cause memory/application crash to conduct denial of service attack.
Impact Level: System/Application
Solution
Upgrade to Thunderbird version 2.0.0.21
http://www.mozilla.com/en-US/thunderbird
Insight
Flaws are in vectors related to the layout engine and destruction of arbitrary layout objects by the 'nsViewManager::Composite' function.
Affected
Thunderbird version prior to 2.0.0.21 on Linux.
References
Severity
Classification
-
CVE CVE-2009-0352, CVE-2009-0353 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Firefox XSL Parsing Vulnerability (Win)
- 7T Interactive Graphical SCADA System 'dc.exe' Command Injection Vulnerability
- Apple Safari DoS or XSS Vulnerability - July09
- Adobe Reader '.ETD File' Denial of Service Vulnerability (Linux)
- Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)