Multiple vulnerabilities in Mozilla Thunderbird

Описание

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Use after free vulnerability in ANGLE component can be exploited to potentially cause denial of service.
2. Implementation vulnerability in WebRTC can be exploited to potentially cause denial of service.
3. Security vulnerability can be exploited to obtain sensitive information and bypass security restrictions.
4. Memory safety vulnerability can be exploited to execute arbitrary code.

Первичный источник обнаружения

• MFSA2020-34
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Mozilla-Thunderbird

Список CVE

• CVE-2020-6463
  critical
• CVE-2020-6514
  high
• CVE-2020-15652
  high
• CVE-2020-15659
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com