Detect date
?
|
01/26/2017 |
Severity
?
|
Critical |
Description
|
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, run arbitrary code, cause a denial of service, spoof user interface and gain privilege escalation. Below is a complete list of vulnerabilities
Technical details Vulnerability (5) can be caused by using insecure methods of creating a communication channel for copying and viewing JSON or HTTP headers data. NB: This vulnerabilities have no public CVSS rating so rating can be changed by the time. NB: At this moment Mozilla just reserved CVE numbers for this vulnerabilities. Information can be changed soon. |
Affected products
|
Mozilla Thunderbird versions earlier than 45.7 |
Solution
|
Update to the latest version |
Original advisories
|
|
Impacts
?
|
ACE [?] OSI [?] DoS [?] CI [?] SB [?] WLF [?] PE [?] SUI [?] |
Related products
|
Mozilla Thunderbird |
CVE-IDS
?
|
CVE-2017-53757.5Critical
CVE-2017-53767.5Critical CVE-2017-53785.0Critical CVE-2017-53807.5Critical CVE-2017-53907.5Critical CVE-2017-53967.5Critical CVE-2017-53835.0Critical CVE-2017-53737.5Critical |
Exploitation
|
The following public exploits exists for this vulnerability: |
Find out the statistics of the vulnerabilities spreading in your region |