Mozilla Thunderbird < 1.5.0.8 Multiple Vulnerabilities. The remote Windows host contains a mail client that is affected by multiple vulnerabilities. The remote version of Mozilla Thunderbird suffers from various security issues, at least one of which may lead to execution of arbitrary code on the affected host subject to the user's privileges
Reporter | Title | Published | Views | Family All 111 |
---|---|---|---|---|
Tenable Nessus | Fedora Core 6 : thunderbird-1.5.0.8-1.fc6 (2006-1192) | 17 Jan 200700:00 | – | nessus |
Tenable Nessus | Fedora Core 5 : firefox-1.5.0.8-1.fc5 (2006-1199) | 17 Jan 200700:00 | – | nessus |
Tenable Nessus | Fedora Core 6 : devhelp-0.12-8.fc6 / epiphany-2.16.0-5.fc6 / firefox-1.5.0.8-1.fc6 / etc (2006-1191) | 17 Jan 200700:00 | – | nessus |
Tenable Nessus | Fedora Core 5 : thunderbird-1.5.0.8-1.fc5 (2006-1194) | 17 Jan 200700:00 | – | nessus |
Tenable Nessus | Firefox < 1.5.0.8 Multiple Vulnerabilities | 8 Nov 200600:00 | – | nessus |
Tenable Nessus | SeaMonkey < 1.0.6 Multiple Vulnerabilities | 8 Nov 200600:00 | – | nessus |
Tenable Nessus | GLSA-200612-06 : Mozilla Thunderbird: Multiple vulnerabilities | 14 Dec 200600:00 | – | nessus |
Tenable Nessus | openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-2251) | 17 Oct 200700:00 | – | nessus |
Tenable Nessus | RHEL 2.1 / 3 / 4 : seamonkey (RHSA-2006:0734) | 20 Nov 200600:00 | – | nessus |
Tenable Nessus | SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 2258) | 13 Dec 200700:00 | – | nessus |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(23635);
script_version("1.18");
script_cve_id(
"CVE-2006-5463",
"CVE-2006-5464",
"CVE-2006-5747",
"CVE-2006-5748"
);
script_bugtraq_id(20957);
script_name(english:"Mozilla Thunderbird < 1.5.0.8 Multiple Vulnerabilities");
script_summary(english:"Checks version of Mozilla Thunderbird");
script_set_attribute( attribute:"synopsis", value:
"The remote Windows host contains a mail client that is affected by
multiple vulnerabilities." );
script_set_attribute( attribute:"description", value:
"The remote version of Mozilla Thunderbird suffers from various
security issues, at least one of which may lead to execution of
arbitrary code on the affected host subject to the user's privileges." );
script_set_attribute(
attribute:"see_also",
value:"https://www.mozilla.org/en-US/security/advisories/mfsa2006-65/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.mozilla.org/en-US/security/advisories/mfsa2006-66/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.mozilla.org/en-US/security/advisories/mfsa2006-67/"
);
script_set_attribute(
attribute:"solution",
value:"Upgrade to Mozilla Thunderbird 1.5.0.8 or later."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_publication_date", value: "2006/11/08");
script_set_attribute(attribute:"vuln_publication_date", value: "2006/11/07");
script_set_attribute(attribute:"patch_publication_date", value: "2006/11/07");
script_cvs_date("Date: 2018/07/16 14:09:15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.");
script_dependencies("mozilla_org_installed.nasl");
script_require_keys("Mozilla/Thunderbird/Version");
exit(0);
}
include("mozilla_version.inc");
port = get_kb_item_or_exit("SMB/transport");
installs = get_kb_list("SMB/Mozilla/Thunderbird/*");
if (isnull(installs)) audit(AUDIT_NOT_INST, "Thunderbird");
mozilla_check_version(installs:installs, product:'thunderbird', esr:FALSE, fix:'1.5.0.8', severity:SECURITY_HOLE);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo