Lucene search

Kaspersky LabKLA64090

HistoryFeb 20, 2024 - 12:00 a.m.

KLA64090 Multiple vulnerabilities in Mozilla Thunderbird

2024-02-2000:00:00

Kaspersky Lab

threats.kaspersky.com

mozilla thunderbird

vulnerabilities

exploitation

denial of service

spoofing

privilege escalation

sensitive information

arbitrary code execution

security update

cve-2024-1546

cve-2024-1548

cve-2024-1550

cve-2024-1551

cve-2024-1547

cve-2024-1549

cve-2024-1552

cve-2024-1553

ace

high severity

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

Percentile

10.3%

JSON

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

Out-of-bounds memory read in networking channels can be exploited to cause denial of service.
Security UI vulnerability can be exploited to spoof user interface.
Security UI vulnerability in Fullscreen Notification can be exploited to spoof user interface.
An elevation of privilege vulnerability can be exploited remotely to gain privileges.
Information disclosure vulnerability can be exploited to obtain sensitive information.
Memory safety vulnerability can be exploited to execute arbitrary code.
Security vulnerability can be exploited to bypass security restrictions.

Original advisories

MFSA2024-07

Related products

Mozilla-Thunderbird

CVE list

CVE-2024-1546 warning

CVE-2024-1548 warning

CVE-2024-1550 warning

CVE-2024-1551 warning

CVE-2024-1547 warning

CVE-2024-1549 warning

CVE-2024-1552 warning

CVE-2024-1553 warning

Solution

Update to the latest version

Download Thunderbird

Impacts

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.