Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges, spoof user interface.
Below is a complete list of vulnerabilities:
- Denial of service vulnerability in Exposed protocol handlers can be exploited to cause denial of service.
- Out of bounds vulnerability in RLBox Expat driver can be exploited to cause denial of service.
- Memory safety vulnerability can be exploited to execute arbitrary code.
- Memory corruption vulnerability in FileReader can be exploited remotely to cause denial of service or execute arbitrary code.
- Elevation of privilege vulnerability in Popup notifications can be exploited remotely to gain privileges.
- Security UI vulnerability in Address bar can be exploited to spoof user interface.
- Security UI vulnerability in Popups can be exploited to spoof user interface.
- Denial of service vulnerability in Content process can be exploited to cause denial of service.
Original advisories
Related products
CVE list
- CVE-2023-32206 high
- CVE-2023-32205 warning
- CVE-2023-32211 high
- CVE-2023-32213 critical
- CVE-2023-32207 critical
- CVE-2023-32214 critical
- CVE-2023-32215 critical
- CVE-2023-32212 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!