KLA11510
Multiple vulnerabilities in Mozilla Thunderbird
Обновлено: 26/06/2019
Дата обнаружения
20/06/2019
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Type confusion vulnerability related to JavaScript objects can be exploited to cause denial of service;
  2. Unspecified vulnerability related to insufficient vetting of parameters can be exploited to execute arbitrary code.
Пораженные продукты

Mozilla Thunderbird versions earlier then 60.7.2

Решение

Update to the latest version
Download Mozilla Thunderbird

Первичный источник обнаружения
Mozilla Foundation Security Advisory 2019-20
Оказываемое влияние
?
ACE 
[?]

DoS 
[?]
Связанные продукты
Mozilla Thunderbird
CVE-IDS
CVE-2019-117080.0Unknown
CVE-2019-117070.0Unknown