Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_THUNDERBIRD_91_0_1.NASL
HistoryAug 17, 2021 - 12:00 a.m.

Mozilla Thunderbird < 91.0.1

2021-08-1700:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
44
JSON

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-37 advisory.

  • Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting attack against servers using HTTP/3. (CVE-2021-29991)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
## 
# (C) Tenable Network Security, Inc.
#                                  
# The descriptive text and package checks in this plugin were
# extracted from Mozilla Foundation Security Advisory mfsa2021-37.
# The text itself is copyright (C) Mozilla Foundation.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(152634);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/11/05");

  script_cve_id("CVE-2021-29991");

  script_name(english:"Mozilla Thunderbird < 91.0.1");

  script_set_attribute(attribute:"synopsis", value:
"A mail client installed on the remote macOS or Mac OS X host is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.0.1. It is, therefore, affected
by a vulnerability as referenced in the mfsa2021-37 advisory.

  - Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This
    allowed for a header splitting attack against servers using HTTP/3. (CVE-2021-29991)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2021-37/");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Mozilla Thunderbird version 91.0.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-29991");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/08/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/08/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/08/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_thunderbird_installed.nasl");
  script_require_keys("MacOSX/Thunderbird/Installed");

  exit(0);
}

include('mozilla_version.inc');

var kb_base = 'MacOSX/Thunderbird';
get_kb_item_or_exit(kb_base+'/Installed');

var version = get_kb_item_or_exit(kb_base+'/Version', exit_code:1);
var path = get_kb_item_or_exit(kb_base+'/Path', exit_code:1);

var is_esr = get_kb_item(kb_base+'/is_esr');
if (is_esr) exit(0, 'The Mozilla Thunderbird installation is in the ESR branch.');

mozilla_check_version(version:version, path:path, product:'thunderbird', esr:FALSE, fix:'91.0.1', severity:SECURITY_WARNING);
VendorProductVersionCPE
mozillathunderbirdcpe:/a:mozilla:thunderbird

Related

cve 1
nessus 19
osv 2
mozilla 1
altlinux 2
prion 1
alpinelinux 1
ubuntu 2
debiancve 1
veracode 1
ubuntucve 1
redhatcve 1
suse 5
cve
cve
CVE-2021-29991
2021-11-03 01:15:00
nessus
nessus
Mozilla Firefox < 91.0.1
2021-08-17 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerability (USN-5047-1)
2021-08-19 00:00:00
Fedora 34 : firefox (2021-74b76e593a)
2021-08-25 00:00:00
osv
osv
firefox vulnerability
2021-08-19 14:53:59
thunderbird vulnerabilities
2022-01-21 17:00:48
mozilla
mozilla
Security Vulnerabilities fixed in Firefox 91.0.1 and Thunderbird 91.0.1 — Mozilla
2021-08-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 91.0.2-alt1
2021-08-23 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 91.0.1-alt1
2021-09-04 00:00:00
prion
prion
Code injection
2021-11-03 01:15:00
alpinelinux
alpinelinux
CVE-2021-29991
2021-11-03 01:15:00
ubuntu
ubuntu
Firefox vulnerability
2021-08-19 00:00:00
Thunderbird vulnerabilities
2022-01-21 00:00:00
debiancve
debiancve
CVE-2021-29991
2021-11-03 01:15:00
veracode
veracode
Header Splitting Attack
2021-08-22 13:42:46
ubuntucve
ubuntucve
CVE-2021-29991
2021-08-18 00:00:00
redhatcve
redhatcve
CVE-2021-29991
2021-08-18 17:34:46
suse
suse
Security update for MozillaFirefox (important)
2021-10-18 00:00:00
Security update for MozillaFirefox (important)
2021-10-16 00:00:00
Security update for MozillaFirefox (important)
2021-10-11 00:00:00
JSON
Related for MACOS_THUNDERBIRD_91_0_1.NASL
cve1nessus19osv2mozilla1altlinux2prion1alpinelinux1ubuntu2debiancve1veracode1ubuntucve1redhatcve1suse5