Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MOZILLA_THUNDERBIRD_31_1.NASL
HistorySep 03, 2014 - 12:00 a.m.

Mozilla Thunderbird < 31.1 Multiple Vulnerabilities

2014-09-0300:00:00
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8
JSON

The version of Thunderbird installed on the remote host is a version prior to 31.1. It is, therefore, affected by the following vulnerabilities :

  • Multiple memory safety flaws exist within the browser engine. Exploiting these, an attacker can cause a denial of service or execute arbitrary code. (CVE-2014-1553, CVE-2014-1562)

  • A use-after-free vulnerability exists due to improper cycle collection when processing animated SVG content.
    A remote attacker can exploit this to cause a denial of service or execute arbitrary code. (CVE-2014-1563)

  • Memory is not properly initialized during GIF rendering.
    Using a specially crafted web script, a remote attacker can exploit this to acquire sensitive information from the process memory. (CVE-2014-1564)

  • The Web Audio API contains a flaw where audio timelines are properly created. Using specially crafted API calls, a remote attacker can exploit this to acquire sensitive information from the process memory or cause a denial of service. (CVE-2014-1565)

  • A use-after-free vulnerability exists due to improper handling of text layout in directionality resolution.
    A remote attacker can exploit this to execute arbitrary code. (CVE-2014-1567)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(77502);
  script_version("1.7");
  script_cvs_date("Date: 2019/11/25");

  script_cve_id(
    "CVE-2014-1553",
    "CVE-2014-1562",
    "CVE-2014-1563",
    "CVE-2014-1564",
    "CVE-2014-1565",
    "CVE-2014-1567"
  );
  script_bugtraq_id(
    69519,
    69520,
    69521,
    69523,
    69524,
    69525
  );

  script_name(english:"Mozilla Thunderbird < 31.1 Multiple Vulnerabilities");
  script_summary(english:"Checks the version of Thunderbird.");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains a mail client that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Thunderbird installed on the remote host is a version
prior to 31.1. It is, therefore, affected by the following
vulnerabilities :

  - Multiple memory safety flaws exist within the browser
    engine. Exploiting these, an attacker can cause a denial
    of service or execute arbitrary code. (CVE-2014-1553,
    CVE-2014-1562)

  - A use-after-free vulnerability exists due to improper
    cycle collection when processing animated SVG content.
    A remote attacker can exploit this to cause a denial of
    service or execute arbitrary code. (CVE-2014-1563)

  - Memory is not properly initialized during GIF rendering.
    Using a specially crafted web script, a remote attacker
    can exploit this to acquire sensitive information from
    the process memory. (CVE-2014-1564)

  - The Web Audio API contains a flaw where audio timelines
    are properly created. Using specially crafted API calls,
    a remote attacker can exploit this to acquire sensitive
    information from the process memory or cause a denial of
    service. (CVE-2014-1565)

  - A use-after-free vulnerability exists due to improper
    handling of text layout in directionality resolution.
    A remote attacker can exploit this to execute arbitrary
    code. (CVE-2014-1567)");
  script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/archive/1/533357/30/0/threaded");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/security/announce/2014/mfsa2014-67.html");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/security/announce/2014/mfsa2014-68.html");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/security/announce/2014/mfsa2014-69.html");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/security/announce/2014/mfsa2014-70.html");
  script_set_attribute(attribute:"see_also", value:"https://www.mozilla.org/security/announce/2014/mfsa2014-72.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Thunderbird 31.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-1563");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/09/02");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/09/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/09/03");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mozilla:thunderbird");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mozilla_org_installed.nasl");
  script_require_keys("Mozilla/Thunderbird/Version");

  exit(0);
}

include("mozilla_version.inc");

port = get_kb_item("SMB/transport");
if (!port) port = 445;

installs = get_kb_list("SMB/Mozilla/Thunderbird/*");
if (isnull(installs)) audit(AUDIT_NOT_INST, "Thunderbird");

mozilla_check_version(installs:installs, product:'thunderbird', esr:FALSE, fix:'31.1', min:'31.0', severity:SECURITY_HOLE, xss:FALSE);
VendorProductVersionCPE
mozillathunderbirdcpe:/a:mozilla:thunderbird

Related

ubuntu 2
openvas 44
suse 9
nessus 27
securityvulns 2
osv 2
oraclelinux 2
debian 2
veracode 2
mageia 2
redhat 2
ibm 3
centos 2
mozilla 5
cve 6
cvelist 6
prion 6
ubuntucve 6
zdi 1
packetstorm 1
checkpoint_advisories 1
fireeye 1
gentoo 1
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-09-11 00:00:00
Firefox vulnerabilities
2014-09-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2330-1)
2014-09-12 00:00:00
openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2014:1098-1)
2014-09-10 00:00:00
Mozilla Firefox Multiple Vulnerabilities-01 (Sep 2014) - Mac OS X
2014-09-05 00:00:00
suse
suse
MozillaThunderbird: Update to 31.1 release (important)
2014-09-09 12:07:15
Security update for MozillaFirefox (important)
2014-09-12 06:07:15
Security update for MozillaFirefox (important)
2014-09-10 05:04:21
nessus
nessus
Firefox ESR 31.x < 31.1 Multiple Vulnerabilities
2014-09-03 00:00:00
Ubuntu 14.04 LTS : Thunderbird vulnerabilities (USN-2330-1)
2014-09-12 00:00:00
Mozilla Thunderbird < 31.1 Multiple Vulnerabilities (Mac OS X)
2014-09-03 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-09-15 00:00:00
Uninit memory disclosure via truncated images in Firefox
2014-09-15 00:00:00
osv
osv
iceweasel - security update
2014-09-03 00:00:00
icedove - security update
2014-09-17 00:00:00
oraclelinux
oraclelinux
firefox security update
2014-09-03 00:00:00
thunderbird security update
2014-09-03 00:00:00
debian
debian
[SECURITY] [DSA 3028-1] icedove security update
2014-09-17 19:55:36
[SECURITY] [DSA 3018-1] iceweasel security update
2014-09-03 10:44:35
veracode
veracode
Use-after-Free
2019-05-02 05:03:53
Denial Of Service (DoS)
2019-01-15 09:00:17
mageia
mageia
Updated firefox & thunderbird packages fix security vulnerabilities
2014-09-05 13:07:37
Updated iceape package fixes security vulnerabilities
2014-10-23 17:27:57
redhat
redhat
(RHSA-2014:1144) Critical: firefox security update
2014-09-03 00:00:00
(RHSA-2014:1145) Important: thunderbird security update
2014-09-03 00:00:00
ibm
ibm
Security Bulletin: Mozilla Firefox vulnerability issues in IBM Storwize V7000 Unified (CVE-2014-1562, CVE-2014-1567)
2018-06-18 00:08:42
Security Bulletin: IBM SONAS security vulnerabilities related to Mozilla Firefox (CVE-2014-1562, CVE-2014-1567)
2018-06-18 00:08:42
Security Bulletin: Vulnerabilities in Firefox affect IBM SmartCloud Provisioning 2.1 for Software Virtual Appliance (CVE-2014-1562, CVE-2014-1567)
2018-06-17 22:30:12
centos
centos
thunderbird security update
2014-09-03 23:55:41
firefox, xulrunner security update
2014-09-03 23:09:36
mozilla
mozilla
Miscellaneous memory safety hazards (rv:32.0 / rv:31.1 / rv:24.8) — Mozilla
2014-09-02 00:00:00
Out-of-bounds read in Web Audio audio timeline — Mozilla
2014-09-02 00:00:00
Uninitialized memory use during GIF rendering — Mozilla
2014-09-02 00:00:00
cve
cve
CVE-2014-1565
2014-09-03 10:55:00
CVE-2014-1562
2014-09-03 10:55:00
CVE-2014-1567
2014-09-03 10:55:00
cvelist
cvelist
CVE-2014-1565
2014-09-03 10:00:00
CVE-2014-1562
2014-09-03 10:00:00
CVE-2014-1567
2014-09-03 10:00:00
prion
prion
Out-of-bounds
2014-09-03 10:55:00
Memory corruption
2014-09-03 10:55:00
Memory corruption
2014-09-03 10:55:00
ubuntucve
ubuntucve
CVE-2014-1565
2014-09-02 00:00:00
CVE-2014-1562
2014-09-02 00:00:00
CVE-2014-1564
2014-09-02 00:00:00
zdi
zdi
Mozilla Firefox DirectionalityUtils Use-After-Free Remote Code Execution Vulnerability
2014-09-03 00:00:00
packetstorm
packetstorm
Mozilla Firefox Secret Leak
2014-09-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox DOMSVGLength Reflected Attribute Use-After-Free (CVE-2014-1563)
2014-09-30 00:00:00
fireeye
fireeye
Fuzzing Image Parsing in Windows, Part Two: Uninitialized Memory
2021-03-03 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
JSON
Related for MOZILLA_THUNDERBIRD_31_1.NASL
ubuntu2openvas44suse9nessus27securityvulns2osv2oraclelinux2debian2veracode2mageia2redhat2ibm3centos2mozilla5cve6cvelist6prion6ubuntucve6zdi1packetstorm1checkpoint_advisories1fireeye1gentoo1