Summary
The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation may let the attacker cause remote code execution or may cause memory/application crash to conduct denial of service attack.
Impact Level: System/Application
Solution
Upgrade to Thunderbird version 2.0.0.21
http://www.mozilla.com/en-US/thunderbird
Insight
Flaws are in vectors related to the layout engine and destruction of arbitrary layout objects by the 'nsViewManager::Composite' function.
Affected
Thunderbird version prior to 2.0.0.21 on Windows.
References
Severity
Classification
-
CVE CVE-2009-0352, CVE-2009-0353 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- 7-Zip Unspecified Archive Handling Vulnerability (Linux)
- Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Linux)
- freeSSHd SFTP 'rename' and 'realpath' Remote DoS Vulnerability
- Adobe Reader/Acrobat Denial of Service Vulnerability (May09)
- Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Mac OS X)