Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2018 Tenable Network Security, Inc.MACOSX_THUNDERBIRD_3_1_20.NASL
HistoryMar 15, 2012 - 12:00 a.m.

Thunderbird 3.1.x < 3.1.20 Multiple Vulnerabilities (Mac OS X)

2012-03-1500:00:00
This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.
www.tenable.com
25

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.445 Medium

EPSS

Percentile

97.4%

JSON

The installed version of Thunderbird 3.1.x is potentially affected by the following security issues :

  • Multiple memory corruption issues. By tricking a user into visiting a specially crafted page, these issues may allow an attacker to execute arbitrary code in the context of the affected application. (CVE-2012-0457, CVE-2012-0461, CVE-2012-0462, CVE-2012-0463, CVE-2012-0464)

  • A security bypass vulnerability exists that can be exploited by an attacker if the victim can be tricked into setting a new home page by dragging a specially crafted link to the ‘home’ button URL, which will set the user’s home page to a ‘javascript:’ URL. (CVE-2012-0458)

  • An information disclosure vulnerability exists due to an out of bounds read in SVG filters. (CVE-2012-0456)

  • A cross-site scripting vulnerability exists that can be triggered by dragging and dropping ‘javascript:’ links onto a frame. (CVE-2012-0455)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(58356);
  script_version("1.10");
  script_cvs_date("Date: 2018/07/14  1:59:36");

  script_cve_id(
    "CVE-2012-0455",
    "CVE-2012-0456",
    "CVE-2012-0457",
    "CVE-2012-0458",
    "CVE-2012-0461",
    "CVE-2012-0462",
    "CVE-2012-0463",
    "CVE-2012-0464"
  );
  script_bugtraq_id(
    52457,
    52458,
    52459,
    52460,
    52461,
    52464,
    52465,
    52466
  );

  script_name(english:"Thunderbird 3.1.x < 3.1.20 Multiple Vulnerabilities (Mac OS X)");
  script_summary(english:"Checks version of Thunderbird");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote Mac OS X host contains a mail client that is potentially
affected by several vulnerabilities.");
  script_set_attribute(
    attribute:"description",
    value:
"The installed version of Thunderbird 3.1.x is potentially affected by 
the following security issues :
  
  - Multiple memory corruption issues. By tricking a user 
    into visiting a specially crafted page, these issues may 
    allow an attacker to execute arbitrary code in the 
    context of the affected application. (CVE-2012-0457,  
    CVE-2012-0461, CVE-2012-0462, CVE-2012-0463, 
    CVE-2012-0464)

  - A security bypass vulnerability exists that can be 
    exploited by an attacker if the victim can be tricked 
    into setting a new home page by dragging a specially 
    crafted link to the 'home' button URL, which will set 
    the user's home page to a 'javascript:' URL. 
    (CVE-2012-0458) 

  - An information disclosure vulnerability exists due to an 
    out of bounds read in SVG filters. (CVE-2012-0456)

  - A cross-site scripting vulnerability exists that can be 
    triggered by dragging and dropping 'javascript:' links 
    onto a frame. (CVE-2012-0455)"
  );
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2012-13/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2012-14/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2012-16/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2012-19/");
  script_set_attribute(
    attribute:"solution",
    value:"Upgrade to Thunderbird 3.1.20 or later."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/03/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/03/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/03/15");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.");

  script_dependencies("macosx_thunderbird_installed.nasl");
  script_require_keys("MacOSX/Thunderbird/Installed");

  exit(0);
}


include("global_settings.inc");
include("misc_func.inc");


kb_base = "MacOSX/Thunderbird";
get_kb_item_or_exit(kb_base+"/Installed");
version = get_kb_item_or_exit(kb_base+"/Version", exit_code:TRUE);

ver = split(version, sep:".", keep:FALSE);
for (i=0; i<max_index(ver); i++)
  ver[i] = int(ver[i]);
# nb: make sure we have at least 3 parts for the check.
for (i=max_index(ver); i<3; i++)
  ver[i] = 0;

if (ver[0] == 3 && ver[1] == 1 && ver[2] < 20)
{
  set_kb_item(name:"www/0/XSS", value:TRUE);
  if (report_verbosity > 0)
  {
    info +=
      '\n  Installed version : ' + version +
      '\n  Fixed version     : 3.1.20' + '\n';
    security_hole(port:0, extra:info);
  }
  else security_hole(0);
  exit(0);
}
else 
{
  if (ver[0] == 3 && ver[1] == 1) exit(0, "The Thunderbird "+version+" install is not affected.");
  else exit(0, "Thunderbird 3.1.x is not installed.");
}
VendorProductVersionCPE
mozillathunderbirdcpe:/a:mozilla:thunderbird

Related

suse 3
nessus 45
openvas 56
ubuntu 7
freebsd 1
osv 3
debian 3
mozilla 4
centos 2
oraclelinux 2
redhat 2
securityvulns 1
veracode 7
prion 8
cvelist 8
cve 8
nvd 8
ubuntucve 8
gentoo 1
kitploit 1
suse
suse
Security update for Mozilla Firefox (critical)
2012-03-29 06:08:20
Security update for Mozilla Firefox (critical)
2012-03-28 21:08:31
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
nessus
nessus
Mozilla Thunderbird 3.1.x < 3.1.20 Multiple Vulnerabilities
2012-03-16 00:00:00
Mozilla Thunderbird 3.1.x < 3.1.20 Multiple Vulnerabilities
2012-03-16 00:00:00
Firefox 3.6.x < 3.6.28 Multiple Vulnerabilities
2012-03-15 00:00:00
openvas
openvas
Mozilla Products Multiple Vulnerabilities - Mar12 (Windows)
2012-03-19 00:00:00
Mozilla Products Multiple Vulnerabilities (Mar 2012) - Windows
2012-03-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0425-1)
2021-06-09 00:00:00
ubuntu
ubuntu
Xulrunner vulnerabilities
2012-03-19 00:00:00
Thunderbird vulnerabilities
2012-03-23 00:00:00
Thunderbird vulnerabilities
2012-03-21 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-03-13 00:00:00
osv
osv
icedove - several
2012-03-21 00:00:00
iceweasel - several
2012-03-15 00:00:00
iceape - several
2012-05-13 00:00:00
debian
debian
[SECURITY] [DSA 2437-1] icedove security update
2012-03-21 18:58:26
[SECURITY] [DSA 2433-1] iceweasel security update
2012-03-15 21:42:10
[SECURITY] [DSA 2548-1] iceape security update
2012-04-24 20:56:27
mozilla
mozilla
Miscellaneous memory safety hazards (rv:11.0/ rv:10.0.3 / rv:1.9.2.28) — Mozilla
2012-03-13 00:00:00
SVG issues found with Address Sanitizer — Mozilla
2012-03-13 00:00:00
XSS with Drag and Drop and Javascript: URL — Mozilla
2012-03-13 00:00:00
centos
centos
firefox, xulrunner security update
2012-03-14 11:23:06
thunderbird security update
2012-03-14 11:41:24
oraclelinux
oraclelinux
thunderbird security update
2012-03-14 00:00:00
firefox security and bug fix update
2012-03-14 00:00:00
redhat
redhat
(RHSA-2012:0388) Critical: thunderbird security update
2012-03-14 00:00:00
(RHSA-2012:0387) Critical: firefox security and bug fix update
2012-03-14 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-03-17 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:08:01
Information Disclosure
2020-04-10 01:07:55
Arbitrary Code Execution
2020-04-10 01:07:55
prion
prion
Memory corruption
2012-03-14 19:55:00
Out-of-bounds
2012-03-14 19:55:00
Memory corruption
2012-03-14 19:55:00
cvelist
cvelist
CVE-2012-0462
2012-03-14 19:00:00
CVE-2012-0463
2012-03-14 19:00:00
CVE-2012-0455
2012-03-14 19:00:00
cve
cve
CVE-2012-0462
2012-03-14 19:55:02
CVE-2012-0463
2012-03-14 19:55:02
CVE-2012-0455
2012-03-14 19:55:01
nvd
nvd
CVE-2012-0462
2012-03-14 19:55:02
CVE-2012-0456
2012-03-14 19:55:01
CVE-2012-0457
2012-03-14 19:55:01
ubuntucve
ubuntucve
CVE-2012-0457
2012-03-14 00:00:00
CVE-2012-0463
2012-03-14 00:00:00
CVE-2012-0462
2012-03-14 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.445 Medium

EPSS

Percentile

97.4%

JSON
Related for MACOSX_THUNDERBIRD_3_1_20.NASL
suse3nessus45openvas56ubuntu7freebsd1osv3debian3mozilla4centos2oraclelinux2redhat2securityvulns1veracode7prion8cvelist8cve8nvd8ubuntucve8gentoo1kitploit1