Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Vulnerability related to document.domain can be exploited to execute arbitrary code;
2. Stack buffer overflow vulnerability can be exploited to cause denial of service;
3. Vulnerability related to 360 Total Security can be exploited to execute arbitrary code;
4. Vulnerability related to HTML parsing can be exploited remotely to bypass security restrictions;
5. Vulnerability can be exploited to bypass security restrictions;
6. Buffer overflow vulnerability in expat can be exploited to arbitrary code execution;
7. Memory safety vulnerability can be exploited to execute arbitrary code;
8. Use-after-free vulnerability can be exploited to cause denial of service.

Mozilla Thunderbird earlier than 68.2

Update to the latest version
Download Mozilla Thunderbird