Versions of Thunderbird 3.1.x earlier than 3.1.10 are potentially affected by multiple vulnerabilities :
Multiple memory corruption issues could lead to arbitrary code execution. (MFSA2011-12)
The βresource:β protocol could be exploited to allow directory traversal on Windows and the potential loading of resources from non-permitted locations. (MFSA2011-16)
Binary data 801271.prm
.mozilla.org/security/announce/2011/mfsa2011-12.html
.mozilla.org/security/announce/2011/mfsa2011-16.html
.mozilla.org/security/known-vulnerabilities/thunderbird31.html#thunderbird3.1.10
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0069
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0070
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0071
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0072
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0074
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0075
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0077
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0078
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0079
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0080
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0081