Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2018 Tenable Network Security, Inc.MOZILLA_THUNDERBIRD_20024.NASL
HistoryMar 19, 2010 - 12:00 a.m.

Mozilla Thunderbird < 2.0.0.24 Multiple Vulnerabilities

2010-03-1900:00:00
This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.
www.tenable.com
24
JSON

The installed version of Thunderbird is earlier than 2.0.0.24. Such versions are potentially affected by multiple vulnerabilities :

  • The columns of a XUL tree element can be manipulated in a particular way that would leave a pointer owned by the column pointing to freed memory. (MFSA 2009-49)

  • A heap-based buffer overflow exists in Mozilla’s string to floating point number conversion routines. (MFSA 2009-59)

  • It is possible to obfuscate the name of files to be downloaded by using a right-to-left override character (RTL). (MFSA 2009-62)

  • Multiple memory corruption vulnerabilities exist that may result in the execution of arbitrary code. (MFSA 2010-07)

#
# (C) Tenable Network Security, Inc.
#


include("compat.inc");


if (description)
{
  script_id(45110);
  script_version("1.15");

  script_cve_id(
    "CVE-2009-0689",
    "CVE-2009-2463",
    "CVE-2009-3072",
    "CVE-2009-3075",
    "CVE-2009-3077",
    "CVE-2009-3376",
    "CVE-2010-0161",
    "CVE-2010-0163"
  );
  script_bugtraq_id(37366,38831);
  script_xref(name:"Secunia", value:"37682");

  script_name(english:"Mozilla Thunderbird < 2.0.0.24 Multiple Vulnerabilities");
  script_summary(english:"Checks version of Thunderbird");

  script_set_attribute(attribute:"synopsis",value:
"The remote Windows host contains a mail client that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description",value:
"The installed version of Thunderbird is earlier than 2.0.0.24.  Such
versions are potentially affected by multiple vulnerabilities :

  - The columns of a XUL tree element can be manipulated in
    a particular way that would leave a pointer owned by
    the column pointing to freed memory. (MFSA 2009-49)

  - A heap-based buffer overflow exists in Mozilla's string
    to floating point number conversion routines. 
    (MFSA 2009-59)

  - It is possible to obfuscate the name of files to be
    downloaded by using a right-to-left override character
    (RTL). (MFSA 2009-62)

  - Multiple memory corruption vulnerabilities exist that
    may result in the execution of arbitrary code. 
    (MFSA 2010-07)");

  script_set_attribute(attribute:"see_also",value:"https://www.mozilla.org/en-US/security/advisories/mfsa2010-07/");
  script_set_attribute(attribute:"see_also",value:"https://www.mozilla.org/en-US/security/advisories/mfsa2009-62/");
  script_set_attribute(attribute:"see_also",value:"https://www.mozilla.org/en-US/security/advisories/mfsa2009-59/");
  script_set_attribute(attribute:"see_also",value:"https://www.mozilla.org/en-US/security/advisories/mfsa2009-49/");
  script_set_attribute(attribute:"see_also",value:"http://www.nessus.org/u?fff60c73");
  script_set_attribute(attribute:"solution",value:"Upgrade to Thunderbird 2.0.0.24 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(16, 94, 119, 189);
  script_set_attribute(attribute:"vuln_publication_date",value:"2009/09/09");
  script_set_attribute(attribute:"patch_publication_date",value:"2010/03/16");
  script_set_attribute(attribute:"plugin_publication_date",value:"2010/03/19");
 script_cvs_date("Date: 2018/07/16 14:09:15");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.");

  script_dependencies("mozilla_org_installed.nasl");
  script_require_keys("Mozilla/Thunderbird/Version");

  exit(0);
}

include("mozilla_version.inc");
port = get_kb_item_or_exit("SMB/transport");

installs = get_kb_list("SMB/Mozilla/Thunderbird/*");
if (isnull(installs)) audit(AUDIT_NOT_INST, "Thunderbird");

mozilla_check_version(installs:installs, product:'thunderbird', esr:FALSE, fix:'2.0.0.24', severity:SECURITY_HOLE);
VendorProductVersionCPE
mozillathunderbirdcpe:/a:mozilla:thunderbird

Related

nessus 43
ubuntu 2
openvas 59
securityvulns 9
mozilla 3
freebsd 1
fedora 20
debian 5
osv 3
seebug 5
redhat 5
centos 5
oraclelinux 2
veracode 5
ubuntucve 7
prion 7
cve 7
packetstorm 4
opera 1
debiancve 2
threatpost 1
mageia 1
zdi 1
checkpoint_advisories 1
nessus
nessus
openSUSE Security Update : MozillaThunderbird (MozillaThunderbird-2189)
2010-03-30 00:00:00
openSUSE Security Update : MozillaThunderbird (MozillaThunderbird-2189)
2010-03-30 00:00:00
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : thunderbird vulnerabilities (USN-915-1)
2010-03-19 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2010-03-18 00:00:00
Firefox and Xulrunner vulnerabilities
2009-09-10 00:00:00
openvas
openvas
Ubuntu Update for thunderbird vulnerabilities USN-915-1
2010-03-22 00:00:00
Ubuntu: Security Advisory (USN-915-1)
2010-03-22 00:00:00
Fedora Update for seamonkey FEDORA-2010-7100
2010-04-29 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2010-07
2010-04-06 00:00:00
Mozilla Foundation Security Advisory 2009-62
2009-10-28 00:00:00
Camino 1.6.10 Remote Array Overrun &#40;Arbitrary code execution&#41;
2009-12-15 00:00:00
mozilla
mozilla
Fixes for potentially exploitable crashes ported to the legacy branch — Mozilla
2010-03-16 00:00:00
Download filename spoofing with RTL override — Mozilla
2009-10-27 00:00:00
TreeColumns dangling pointer vulnerability — Mozilla
2009-09-09 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2010-03-16 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: seamonkey-1.1.19-1.fc11
2010-04-21 21:53:31
[SECURITY] Fedora 10 Update: blam-1.8.5-14.fc10
2009-09-11 23:28:07
[SECURITY] Fedora 10 Update: perl-Gtk2-MozEmbed-0.08-6.fc10.5
2009-09-11 23:28:07
debian
debian
[SECURITY] [DSA 2025-1] New icedove packages fix several vulnerabilities
2010-03-31 08:41:27
[Backports-security-announce] Security Update for nsrp
2010-07-21 08:26:53
[Backports-security-announce] Security Update for nsrp
2010-07-21 08:24:14
osv
osv
icedove - several vulnerabilities
2010-03-31 00:00:00
xulrunner - several vulnerabilities
2009-09-14 00:00:00
mono - security update
2018-11-01 00:00:00
seebug
seebug
Mozilla Thunderbird多个拒绝服务漏洞
2010-03-23 00:00:00
Mozilla Firefox下载文件名欺骗漏洞
2009-11-03 00:00:00
Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
2010-03-19 00:00:00
redhat
redhat
(RHSA-2009:1431) Critical: seamonkey security update
2009-09-09 00:00:00
(RHSA-2010:0154) Moderate: thunderbird security update
2010-03-17 00:00:00
(RHSA-2010:0153) Moderate: thunderbird security update
2010-03-17 00:00:00
centos
centos
seamonkey security update
2009-09-10 22:51:03
thunderbird security update
2010-03-17 18:24:23
thunderbird security update
2010-03-26 20:37:29
oraclelinux
oraclelinux
seamonkey security update
2009-09-10 00:00:00
thunderbird security update
2010-03-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:43:28
Remote Code Execution (RCE)
2020-04-10 00:36:53
Remote Code Execution (RCE)
2020-04-10 00:37:58
ubuntucve
ubuntucve
CVE-2010-0163
2010-03-18 00:00:00
CVE-2010-0161
2010-03-23 00:00:00
CVE-2009-3072
2009-09-10 00:00:00
prion
prion
Code injection
2009-10-29 14:30:00
Memory corruption
2010-03-23 00:53:00
Code injection
2010-03-23 00:53:00
cve
cve
CVE-2010-0161
2010-03-23 00:53:00
CVE-2010-0163
2010-03-23 00:53:00
CVE-2009-3072
2009-09-10 21:30:00
packetstorm
packetstorm
Flock 2.5.2 Remote Array Overrun
2009-12-12 00:00:00
J 6.02.023 Array Overrun
2010-01-09 00:00:00
Matlab R2009b Array Overrun
2010-01-09 00:00:00
opera
opera
Heap buffer overflow in string to number conversion
2009-11-20 00:00:00
debiancve
debiancve
CVE-2009-0689
2009-07-01 13:00:00
CVE-2009-2463
2009-07-22 18:30:00
threatpost
threatpost
'High Risk' Flaw Fixed in Google Chrome
2009-10-06 22:32:02
mageia
mageia
Updated mono packages fix security vulnerability
2016-01-14 04:44:39
zdi
zdi
Mozilla Firefox TreeColumns Dangling Pointer Vulnerability
2009-09-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Multiple Products JavaScript String Replace Buffer Overflow (CVE-2009-3075)
2010-05-26 00:00:00
JSON
Related for MOZILLA_THUNDERBIRD_20024.NASL
nessus43ubuntu2openvas59securityvulns9mozilla3freebsd1fedora20debian5osv3seebug5redhat5centos5oraclelinux2veracode5ubuntucve7prion7cve7packetstorm4opera1debiancve2threatpost1mageia1zdi1checkpoint_advisories1