Kaspersky LabKLA11251KLA11251 Multiple vulnerabilities in Mozilla Thunderbird
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
Low
0.122 Low
EPSS
Percentile
95.4%
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions and spoof user interface.
Below is a complete list of vulnerabilities:
- Multiple memory corruption vulnerabilities in Skia can be exploited remotely to cause denial of service;
- An information disclosure vulnerability in S/MIME can be exploited locally via chosen-ciphertext attack to obtain sensitive information;
- Multiple use-after-free vulnerabilities can be exploited remotely to cause denial of service;
- An integer overflow and out-of-bounds write vulnerabilities in Skia can be exploited remotely to cause denial of service;
- An unspecified vulnerability can be exploited remotely via specially crafted message headers to obtain sensitive information;
- An unspecified vulnerability can be exploited remotely via src attribute of remote images or links to obtain sensitive information;
- An unspecified vulnerability can be exploited remotely via attachment filename to spoof user interface;
- An unspecified vulnerability can be exploited remotely via specially crafted website to bypass security restrictions;
- A buffer overflow vulnerability can be exploited remotely to cause denial of service.
Original advisories
Mozilla Foundation Security Advisory 2018-13
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
CVE-2018-5154 critical
CVE-2018-5155 critical
CVE-2018-5159 critical
CVE-2018-5168 warning
CVE-2018-5174 warning
CVE-2018-5150 critical
CVE-2018-5183 critical
CVE-2018-5184 warning
CVE-2018-5161 warning
CVE-2018-5162 warning
CVE-2018-5170 warning
CVE-2018-5178 high
CVE-2018-5185 warning
Solution
Update to latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
- OSI
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
- SB
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
- PE
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
- XSS/CSS
Cross site scripting. Exploitation of vulnerabilities with this impact can lead to partial interception of information transmitted between user and site.
- SUI
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
Affected Products
- Mozilla Thunderbird earlier than 52.8
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
Low
0.122 Low
EPSS
Percentile
95.4%