Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, bypass security restrictions.
Below is a complete list of vulnerabilities:
- Memory safety vulnerability can be exploited to execute arbitrary code.
- Out of bounds read vulnerability in DOMParser can be exploited to cause denial of service.
- An elevation of privilege vulnerability in popup notifications can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Firefox uninstaller can be exploited remotely to gain privileges.
- Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
- Stack buffer overflow vulnerability in StorageManager can be exploited remotely to cause denial of service.
- Security vulnerability in Offscreen Canvas can be exploited to bypass security restrictions.
- Security UI vulnerability can be exploited to spoof user interface and execute arbitrary code.
- Cookie jar overflow vulnerability can be exploited to cause denial of service.
- Denial of service vulnerability in WASM JIT analysis can be exploited to cause denial of service.
Fiches de renseignement originales
Exploitation
Public exploits exist for this vulnerability.
Produits associés
Liste CVE
- CVE-2023-4047 critical
- CVE-2023-4054 high
- CVE-2023-4046 high
- CVE-2023-4056 critical
- CVE-2023-4048 critical
- CVE-2023-4052 high
- CVE-2023-4049 high
- CVE-2023-4055 critical
- CVE-2023-4057 critical
- CVE-2023-4045 high
- CVE-2023-4050 critical
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !