Rapid7 Vulnerability & Exploit Database

RHSA-2011:0475: thunderbird security update

Back to Search

RHSA-2011:0475: thunderbird security update

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
05/07/2011
Created
07/25/2018
Added
05/12/2011
Modified
07/04/2017

Description

Mozilla Thunderbird is a standalone mail and newsgroup client.Several flaws were found in the processing of malformed HTML content. AnHTML mail message containing malicious content could possibly lead toarbitrary code execution with the privileges of the user runningThunderbird. (CVE-2011-0080, CVE-2011-0081)An arbitrary memory write flaw was found in the way Thunderbird handledout-of-memory conditions. If all memory was consumed when a user viewed amalicious HTML mail message, it could possibly lead to arbitrary codeexecution with the privileges of the user running Thunderbird.(CVE-2011-0078)An integer overflow flaw was found in the way Thunderbird handled the HTMLframeset tag. An HTML mail message with a frameset tag containing largevalues for the "rows" and "cols" attributes could trigger this flaw,possibly leading to arbitrary code execution with the privileges of theuser running Thunderbird. (CVE-2011-0077)A flaw was found in the way Thunderbird handled the HTML iframe tag. AnHTML mail message with an iframe tag containing a specially-crafted sourceaddress could trigger this flaw, possibly leading to arbitrary codeexecution with the privileges of the user running Thunderbird.(CVE-2011-0075)A flaw was found in the way Thunderbird displayed multiple marqueeelements. A malformed HTML mail message could cause Thunderbird to executearbitrary code with the privileges of the user running Thunderbird.(CVE-2011-0074)A flaw was found in the way Thunderbird handled the nsTreeSelectionelement. Malformed content could cause Thunderbird to execute arbitrarycode with the privileges of the user running Thunderbird. (CVE-2011-0073)A directory traversal flaw was found in the Thunderbird resource://protocol handler. Malicious content could cause Thunderbird to accessarbitrary files accessible to the user running Thunderbird. (CVE-2011-0071)A double free flaw was found in the way Thunderbird handled"application/http-index-format" documents. A malformed HTTP response couldcause Thunderbird to execute arbitrary code with the privileges of the userrunning Thunderbird. (CVE-2011-0070)All Thunderbird users should upgrade to this updated package, whichresolves these issues. All running instances of Thunderbird must berestarted for the update to take effect.

Solution(s)

  • redhat-upgrade-thunderbird
  • redhat-upgrade-thunderbird-debuginfo

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;