Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2018 Tenable Network Security, Inc.MOZILLA_THUNDERBIRD_305.NASL
HistoryJun 23, 2010 - 12:00 a.m.

Mozilla Thunderbird < 3.0.5 Multiple Vulnerabilities

2010-06-2300:00:00
This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.
www.tenable.com
34
JSON

The installed version of Thunderbird is earlier than 3.0.5. Such versions are potentially affected by the following security issues :

  • A memory corruption vulnerability can lead to arbitrary code execution if garbage collection is carefully timed after DOM nodes are moved between documents.
    (MFSA 2010-25)

  • Multiple crashes can result in arbitrary code execution. (MFSA 2010-26)

  • An error in β€˜nsGenericDOMDataNode’ allows a buffer overflow in certain DOM nodes leading to arbitrary code execution. (MFSA 2010-29)

  • An error in a XSLT node sorting function contains an integer overflow leading to application crashes and possible arbitrary code execution. (MFSA 2010-30)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(47125);
  script_version("1.15");
  script_cvs_date("Date: 2018/07/16 14:09:15");

  script_cve_id("CVE-2010-1121", "CVE-2010-1196", "CVE-2010-1199");
  script_bugtraq_id(38952, 41082, 41087);
  script_xref(name:"Secunia", value:"40323");

  script_name(english:"Mozilla Thunderbird < 3.0.5 Multiple Vulnerabilities");
  script_summary(english:"Checks version of Thunderbird");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains a mail client that is affected by
multiple vulnerabilities."
  );
  script_set_attribute(attribute:"description", value:
"The installed version of Thunderbird is earlier than 3.0.5.  Such
versions are potentially affected by the following security issues :

  - A memory corruption vulnerability can lead to arbitrary
    code execution if garbage collection is carefully timed
    after DOM nodes are moved between documents.
    (MFSA 2010-25)

  - Multiple crashes can result in arbitrary code
    execution. (MFSA 2010-26)

  - An error in 'nsGenericDOMDataNode' allows a buffer
    overflow in certain DOM nodes leading to arbitrary code
    execution. (MFSA 2010-29)

  - An error in a XSLT node sorting function contains an
    integer overflow leading to application crashes and
    possible arbitrary code execution. (MFSA 2010-30)");

  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2010-25/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2010-26/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2010-29/");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2010-30/");
  script_set_attribute(attribute:"solution", value:"Upgrade to Thunderbird 3.0.5 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"vuln_publication_date", value:"2010/03/24");
  script_set_attribute(attribute:"patch_publication_date", value:"2010/06/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/06/23");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.");
  script_dependencies("mozilla_org_installed.nasl");
  script_require_keys("Mozilla/Thunderbird/Version");
  exit(0);
}

include("mozilla_version.inc");
port = get_kb_item_or_exit("SMB/transport");

installs = get_kb_list("SMB/Mozilla/Thunderbird/*");
if (isnull(installs)) audit(AUDIT_NOT_INST, "Thunderbird");

mozilla_check_version(installs:installs, product:'thunderbird', esr:FALSE, fix:'3.0.5', severity:SECURITY_HOLE);
VendorProductVersionCPE
mozillathunderbirdcpe:/a:mozilla:thunderbird

Related

openvas 81
nessus 44
ubuntu 7
packetstorm 1
seebug 2
securityvulns 6
ubuntucve 3
cve 3
zdi 2
fedora 20
prion 3
veracode 3
mozilla 3
exploitpack 1
freebsd 2
exploitdb 1
redhat 4
centos 4
oraclelinux 4
suse 1
debian 3
osv 1
openvas
openvas
Mandriva Update for totem MDVA-2010:126 (totem)
2010-04-29 00:00:00
Mandriva Update for totem MDVA-2010:126 (totem)
2010-04-29 00:00:00
Mandriva Update for mozilla-thunderbird MDVSA-2010:126 (mozilla-thunderbird)
2010-06-25 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2010:126)
2010-06-25 00:00:00
Ubuntu 10.04 LTS : thunderbird vulnerabilities (USN-943-1)
2010-07-07 00:00:00
SeaMonkey < 2.0.5 Multiple Vulnerabilities
2010-06-23 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2010-07-06 00:00:00
Firefox and Xulrunner vulnerabilities
2010-06-29 00:00:00
Firefox regression
2010-06-30 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Firefox XSLT Sort Code Execution
2010-09-11 00:00:00
seebug
seebug
Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability
2010-06-24 00:00:00
Mozilla Firefox 3.6ζ΅θ§ˆε™¨DOMθŠ‚η‚Ήη§»εŠ¨ι‡Šζ”ΎεŽδ½Ώη”¨ζΌζ΄ž
2010-04-08 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2010-25
2010-04-06 00:00:00
ZDI-10-063: Mozilla Firefox Cross Document DOM Node Moving Code Execution Vulnerability
2010-04-06 00:00:00
ZDI-10-113: Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability
2010-06-25 00:00:00
ubuntucve
ubuntucve
CVE-2010-1121
2010-03-25 00:00:00
CVE-2010-1199
2010-06-24 00:00:00
CVE-2010-1196
2010-06-24 00:00:00
cve
cve
CVE-2010-1121
2010-03-25 21:00:00
CVE-2010-1199
2010-06-24 12:30:00
CVE-2010-1196
2010-06-24 12:30:00
zdi
zdi
Mozilla Firefox Cross Document DOM Node Moving Remote Code Execution Vulnerability
2010-04-05 00:00:00
Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability
2010-06-23 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: xulrunner-1.9.2.3-1.fc13
2010-04-09 04:02:59
[SECURITY] Fedora 13 Update: firefox-3.6.3-1.fc13
2010-04-09 04:02:59
[SECURITY] Fedora 12 Update: firefox-3.5.10-1.fc12
2010-06-24 16:26:47
prion
prion
Design/Logic Flaw
2010-03-25 21:00:00
Integer overflow
2010-06-24 12:30:00
Integer overflow
2010-06-24 12:30:00
veracode
veracode
Use-after-free
2020-04-10 00:43:44
Denial Of Service (DoS)
2020-04-10 00:43:50
Integer Overflows
2020-04-10 00:43:46
mozilla
mozilla
Re-use of freed object due to scope confusion β€” Mozilla
2010-04-01 00:00:00
Integer Overflow in XSLT Node Sorting β€” Mozilla
2010-06-22 00:00:00
Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal β€” Mozilla
2010-06-22 00:00:00
exploitpack
exploitpack
Mozilla Firefox 3.6.3 - XSLT Sort Remote Code Execution
2010-09-09 00:00:00
freebsd
freebsd
firefox -- Re-use of freed object due to scope confusion
2010-04-01 00:00:00
mozilla -- multiple vulnerabilities
2010-06-22 00:00:00
exploitdb
exploitdb
Mozilla Firefox 3.6.3 - XSLT Sort Remote Code Execution
2010-09-09 00:00:00
redhat
redhat
(RHSA-2010:0501) Critical: firefox security, bug fix, and enhancement update
2010-06-22 00:00:00
(RHSA-2010:0500) Critical: firefox security, bug fix, and enhancement update
2010-06-22 00:00:00
(RHSA-2010:0499) Critical: seamonkey security update
2010-06-22 00:00:00
centos
centos
devhelp, esc, firefox, gnome, totem, xulrunner, yelp security update
2010-06-24 16:14:16
firefox security update
2010-08-06 23:15:15
seamonkey security update
2010-07-21 19:15:00
oraclelinux
oraclelinux
firefox security, bug fix, and enhancement update
2010-06-23 00:00:00
firefox security, bug fix, and enhancement update
2010-06-23 00:00:00
seamonkey security update
2010-06-22 00:00:00
suse
suse
remote code execution in MozillaFirefox,mozilla-xulrunner191
2010-07-09 14:53:59
debian
debian
[SECURITY] [DSA 2064-1] New xulrunner packages fix several vulnerabilities
2010-06-27 20:39:12
[Backports-security-announce] Security Update for xulrunner
2010-07-01 11:48:42
[Backports-security-announce] Security Update for xulrunner
2010-07-01 11:54:27
osv
osv
xulrunner - several vulnerabilities
2010-06-27 00:00:00
JSON
Related for MOZILLA_THUNDERBIRD_305.NASL
openvas81nessus44ubuntu7packetstorm1seebug2securityvulns6ubuntucve3cve3zdi2fedora20prion3veracode3mozilla3exploitpack1freebsd2exploitdb1redhat4centos4oraclelinux4suse1debian3osv1