Mozilla Thunderbird 'WebSockets' Denial Of Service Vulnerability (Mac OS X) Network Vulnerability

Summary

The host is installed with Mozilla Thunderbird and is prone to multiple vulnerabilities.

Impact

Successful exploitation will let attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. Impact Level: System/Application

Solution

Upgrade to Thunderbird version to 16.0.1 or later, http://www.mozilla.org/en-US/thunderbird

Insight

Error in the WebSockets implementation, allows remote attackers to cause a denial of service.

Affected

Thunderbird versions before 16.0.1 on Mac OS X

References

http://secunia.com/advisories/50856
http://secunia.com/advisories/50935
http://www.mozilla.org/security/announce/2012/mfsa2012-88.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-4191

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
Adobe AIR Multiple Vulnerabilities-01 Jun14 (Windows)
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
Adobe Acrobat and Reader Multiple Vulnerabilities -July10 (Windows)
Adobe Air Multiple Vulnerabilities -01 May 13 (Mac OS X)

Mozilla Thunderbird 'WebSockets' Denial of Service Vulnerability (Mac OS X)

Take action and discover your vulnerabilities