KLA11186
Multiple vulnerabilities in Mozilla Thunderbird

Updated: 06/03/2020

Detect date ?	01/25/2018
Severity ?	Critical
Description	Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface and execute arbitrary code. Below is a complete list of vulnerabilities: Multiple use-after-free vulnerabilities can be explotied remotely to cause denial of service; An unspecified vulnerability in the addressbar can be exploited remotely via specially crafted URL to spoof user interface; Multiple memory corruption vulnerabilities can be exploited remotely to execute arbitrary code;
Affected products	Mozilla Thunderbird earlier than 52.6
Solution	Update to the latest version Download Mozilla Thunderbird
Original advisories	Mozilla Foundation Security Advisory 2018-04
Impacts ?	ACE [?] OSI [?] DoS [?] SB [?] PE [?] XSS/CSS [?] SUI [?]
Related products	Mozilla Thunderbird
CVE-IDS ?	CVE-2018-50957.5Critical CVE-2018-50967.5Critical CVE-2018-50977.5Critical CVE-2018-50987.5Critical CVE-2018-50997.5Critical CVE-2018-51027.5Critical CVE-2018-51037.5Critical CVE-2018-51047.5Critical CVE-2018-51175.0Critical CVE-2018-50897.5Critical
	Find out the statistics of the vulnerabilities spreading in your region

KLA11186Multiple vulnerabilities in Mozilla Thunderbird