Lucene search
K

14 matches found

CVE
CVE
added 2018/06/11 9:0 p.m.112 views

CVE-2017-7829

CVE-2017-7829 is a Thunderbird vulnerability in which the sender’s address can be spoofed. The real sender is hidden if a null character precedes the display string, causing the recipient to see an arbitrary address. Affected product is Mozilla Thunderbird prior to 52.5.2. The issue is described ...

5.3CVSS6.1AI score0.01802EPSS
Exploits1References8Affected Software1
OpenVAS
OpenVAS
added 2018/01/30 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-3529-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.07262EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/30 12:0 a.m.26 views

Ubuntu 14.04 LTS / 16.04 LTS : Thunderbird vulnerabilities (USN-3529-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3529-1 advisory. It was discovered that a From address encoded with a null character is cut off in the message header display. An attacker could potentially...

9.8CVSS7.8AI score0.07262EPSS
Exploits1References15
Cent OS
Cent OS
added 2018/01/08 4:7 p.m.69 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2018:0061 An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...

8.8CVSS7AI score0.02008EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2018/01/08 4:49 a.m.62 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.1AI score0.02008EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2018/01/08 12:0 a.m.27 views

RHEL 6 / 7 : thunderbird (RHSA-2018:0061)

The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2018:0061 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.5.2. Security Fixes:...

8.8CVSS7.7AI score0.02008EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2018/01/08 12:0 a.m.31 views

RedHat Update for thunderbird RHSA-2018:0061-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.6AI score0.02008EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/02 12:0 a.m.35 views

Mozilla Thunderbird < 52.5.2

The version of Thunderbird installed on the remote Windows host is prior to 52.5.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-30 advisory. - It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via View -...

9.3CVSS7.8AI score0.03215EPSS
Exploits1References6
Debian
Debian
added 2017/12/29 9:58 p.m.31 views

[SECURITY] [DSA 4075-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4075-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 29, 2017 https://www.debian.org/security/faq -...

10CVSS9.1AI score0.07439EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/12/28 12:0 a.m.270 views

Debian: Security Advisory (DSA-4075-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.8AI score0.07439EPSS
Exploits1References4
Debian
Debian
added 2017/12/27 5:5 p.m.27 views

[SECURITY] [DLA 1223-1] thunderbird security update

Package : thunderbird Version : 1:52.5.2-1deb7u1 CVE ID : CVE-2017-7829 CVE-2017-7846 CVE-2017-7847 CVE-2017-7848 Multiple security issues have been found in the Mozilla Thunderbird mail client including information leaks, unintended JavaScript execution and sender address spoofing. For Debian 7...

8.8CVSS6.8AI score0.02008EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/12/26 12:0 a.m.74 views

Mozilla Thunderbird Security Advisories (MFSA2017-30, MFSA2017-30) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

8.8CVSS6.6AI score0.02008EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/25 3:7 a.m.81 views

Security update for Mozilla Thunderbird (important)

This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities: - CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin bsc1074043 - CVE-2017-7847: Local path string can be leaked from RSS feed bsc1074044 - CVE-2017-7848: RSS Feed vulnerable to new line...

1.9AI score0.02008EPSS
Exploits1References4
ALT Linux
ALT Linux
added 2017/12/25 12:0 a.m.28 views

Security fix for the ALT Linux 10 package thunderbird version 52.5.2-alt1

Dec. 25, 2017 Andrey Cherepanov 52.5.2-alt1 - New version 52.5.2 - Enigmail 1.9.9 - Fixes: + CVE-2017-7846 JavaScript Execution via RSS in mailbox:// origin + CVE-2017-7847 Local path string can be leaked from RSS feed + CVE-2017-7848 RSS Feed vulnerable to new line Injection + CVE-2017-7829...

6.8CVSS7.1AI score0.02008EPSS
Exploits1
Rows per page
Query Builder