| Source | Link |
|---|---|
| mozilla | www.mozilla.org/en-US/security/advisories/mfsa2019-15/ |
# SPDX-FileCopyrightText: 2019 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:mozilla:thunderbird";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.815083");
script_version("2024-02-15T05:05:40+0000");
script_cve_id("CVE-2019-9815", "CVE-2019-9816", "CVE-2019-9817", "CVE-2019-9800",
"CVE-2019-9819", "CVE-2019-9820", "CVE-2019-7317", "CVE-2019-11691",
"CVE-2019-11692", "CVE-2019-9797", "CVE-2018-18511", "CVE-2019-5798",
"CVE-2019-11698");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"last_modification", value:"2024-02-15 05:05:40 +0000 (Thu, 15 Feb 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2019-07-26 17:00:00 +0000 (Fri, 26 Jul 2019)");
script_tag(name:"creation_date", value:"2019-05-24 12:23:26 +0530 (Fri, 24 May 2019)");
script_name("Mozilla Thunderbird Security Advisories (MFSA2019-13, MFSA2019-15) - Mac OS X");
script_tag(name:"summary", value:"Mozilla Thunderbird is prone to multiple vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Multiple flaws exist due to:
- An out-of-bounds read error in Skia.
- Theft of user history data through drag and drop of hyperlinks to and from bookmarks.
- Cross-origin theft of images with ImageBitmapRenderingContext and createImageBitmap.
- Multiple use-after-free errors in png_image_free of libpng library,
event listener manager, XMLHttpRequest and chrome event handler.
- Compartment mismatch with fetch API.
- Stealing of cross-domain images using canvas.
- Type confusion with object groups and UnboxedObjects.
- A timing attack vulnerability related to not disabling hyperthreading.
- Memory safety bugs");
script_tag(name:"impact", value:"Successful exploitation allows attackers to
conduct timing attack, security bypass, execute arbitrary code denial of service.");
script_tag(name:"affected", value:"Mozilla Thunderbird versions before 60.7.");
script_tag(name:"solution", value:"Update to version 60.7 or later.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"executable_version");
script_xref(name:"URL", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2019 Greenbone AG");
script_family("General");
script_dependencies("gb_mozilla_prdts_detect_macosx.nasl");
script_mandatory_keys("Thunderbird/MacOSX/Version");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))
exit(0);
vers = infos["version"];
path = infos["location"];
if(version_is_less(version:vers, test_version:"60.7")) {
report = report_fixed_ver(installed_version:vers, fixed_version:"60.7", install_path:path);
security_message(port:0, data:report);
exit(0);
}
exit(99);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation