Lucene search
PRIOn knowledge basePRION:CVE-2023-3417HistoryJul 24, 2023 - 11:15 a.m.
Privilege escalation
2023-07-2411:15:00
PRIOn knowledge base
www.prio-n.com
247
privilege escalation
thunderbird
unicode character
vulnerability
file extension
Thunderbird allowed the Text Direction Override Unicode Character in filenames. An email attachment could be incorrectly shown as being a document file, while in fact it was an executable file. Newer versions of Thunderbird will strip the character and show the correct file extension. This vulnerability affects Thunderbird < 115.0.1 and Thunderbird < 102.13.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 10.0 | |
| debian_linux | eq | 11.0 | |
| debian_linux | eq | 12.0 | |
| thunderbird | lt | 102.13.1 | |
| thunderbird | ge | 115.0 | |
| thunderbird | lt | 115.0.1 |
Related
debian
debian
[SECURITY] [DSA 5463-1] thunderbird security update
2023-07-30 19:33:58
[SECURITY] [DLA 3510-1] thunderbird security update
2023-07-31 07:37:11
nessus
nessus
Debian DLA-3510-1 : thunderbird - LTS security update
2023-07-31 00:00:00
Mozilla Thunderbird < 102.13.1
2023-07-25 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2023-212-01)
2023-08-01 00:00:00
Debian: Security Advisory (DSA-5463-1)
2023-07-31 00:00:00
Debian: Security Advisory (DLA-3510-1)
2023-08-01 00:00:00
nvd
nvd
CVE-2023-3417
2023-07-24 11:15:09
redhatcve
redhatcve
CVE-2023-3417
2023-07-24 22:47:02
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 102.13.1 — Mozilla
2023-07-04 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.0.1 — Mozilla
2023-07-20 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2023-07-31 21:58:41
ubuntucve
ubuntucve
CVE-2023-3417
2023-07-24 00:00:00
redos
redos
ROS-20230908-08
2023-09-08 00:00:00
veracode
veracode
Improper Filename Validation
2023-07-27 17:03:10
debiancve
debiancve
CVE-2023-3417
2023-07-24 11:15:09
osv
osv
thunderbird - security update
2023-07-30 00:00:00
thunderbird - security update
2023-07-31 00:00:00
thunderbird vulnerabilities
2023-09-04 04:07:45
cvelist
cvelist
CVE-2023-3417
2023-07-24 10:09:37
cve
cve
CVE-2023-3417
2023-07-24 11:15:09
kaspersky
kaspersky
KLA51268 Multiple vulnerabilities in Mozilla Thunderbird
2023-07-20 00:00:00
amazon
amazon
Important: thunderbird
2023-09-13 23:44:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-09-04 00:00:00
redhat
redhat
(RHSA-2023:4500) Important: thunderbird security update
2023-08-07 08:05:27
(RHSA-2023:4494) Important: thunderbird security update
2023-08-07 07:55:00
(RHSA-2023:4497) Important: thunderbird security update
2023-08-07 08:02:30
almalinux
almalinux
Important: thunderbird security update
2023-08-07 00:00:00
Important: thunderbird security update
2023-08-07 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2232
2023-09-12 11:49:20
Advisory ROSA-SA-2023-2233
2023-09-12 11:49:48
oraclelinux
oraclelinux
thunderbird security update
2023-08-08 00:00:00
thunderbird security update
2023-08-09 00:00:00
thunderbird security update
2023-08-08 00:00:00
rocky
rocky
thunderbird security update
2023-08-08 12:35:00
thunderbird security update
2023-08-08 12:34:39
mageia
mageia
Updated firefox/thunderbird packages fix security vulnerability
2023-09-25 01:16:18
gentoo
gentoo
Mozilla Thunderbird: Multiple Vulnerabilities
2024-02-19 00:00:00