Lucene search
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2819-1.NASLHistoryDec 02, 2015 - 12:00 a.m.
Ubuntu 14.04 LTS : Thunderbird vulnerabilities (USN-2819-1)
2015-12-0200:00:00
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
44
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.096
Percentile
94.9%
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2819-1 advisory.
Christian Holler, David Major, Jesse Ruderman, Tyson Smith, Boris Zbarsky, Randell Jesup, Olli Pettay, Karl Tomlinson, Jeff Walden, and Gary Kwong discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-4513)
Tyson Smith and David Keeler discovered a use-after-poison and buffer overflow in NSS. An attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7181, CVE-2015-7182)
Ryan Sleevi discovered an integer overflow in NSPR. An attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7183)
Micha Bentkowski discovered that adding white-space to hostnames that are IP addresses can bypass same- origin protections. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could potentially exploit this to conduct cross-site scripting (XSS) attacks.
(CVE-2015-7188)
Looben Yang discovered a buffer overflow during script interactions with the canvas element in some circumstances. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7189)
Shinto K Anto discovered that CORS preflight is bypassed when receiving non-standard Content-Type headers in some circumstances. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could potentially exploit this to bypass same-origin restrictions. (CVE-2015-7193)
Gustavo Grieco discovered a buffer overflow in libjar in some circumstances. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7194)
Ehsan Akhgari discovered a mechanism for a web worker to bypass secure requirements for web sockets. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could exploit this to bypass the mixed content web socket policy. (CVE-2015-7197)
Ronald Crane discovered several vulnerabilities through code-inspection. If a user were tricked in to opening a specially crafted website in a browser-like context, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7198, CVE-2015-7199, CVE-2015-7200)
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2819-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(87168);
script_version("2.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/28");
script_cve_id(
"CVE-2015-4513",
"CVE-2015-7181",
"CVE-2015-7182",
"CVE-2015-7183",
"CVE-2015-7188",
"CVE-2015-7189",
"CVE-2015-7193",
"CVE-2015-7194",
"CVE-2015-7197",
"CVE-2015-7198",
"CVE-2015-7199",
"CVE-2015-7200"
);
script_xref(name:"USN", value:"2819-1");
script_name(english:"Ubuntu 14.04 LTS : Thunderbird vulnerabilities (USN-2819-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in
the USN-2819-1 advisory.
Christian Holler, David Major, Jesse Ruderman, Tyson Smith, Boris Zbarsky, Randell Jesup, Olli Pettay,
Karl Tomlinson, Jeff Walden, and Gary Kwong discovered multiple memory safety issues in Thunderbird. If a
user were tricked in to opening a specially crafted message, an attacker could potentially exploit these
to cause a denial of service via application crash, or execute arbitrary code with the privileges of the
user invoking Thunderbird. (CVE-2015-4513)
Tyson Smith and David Keeler discovered a use-after-poison and buffer overflow in NSS. An attacker could
potentially exploit these to cause a denial of service via application crash, or execute arbitrary code
with the privileges of the user invoking Thunderbird. (CVE-2015-7181, CVE-2015-7182)
Ryan Sleevi discovered an integer overflow in NSPR. An attacker could potentially exploit this to cause a
denial of service via application crash, or execute arbitrary code with the privileges of the user
invoking Thunderbird. (CVE-2015-7183)
Micha Bentkowski discovered that adding white-space to hostnames that are IP addresses can bypass same-
origin protections. If a user were tricked in to opening a specially crafted website in a browser-like
context, an attacker could potentially exploit this to conduct cross-site scripting (XSS) attacks.
(CVE-2015-7188)
Looben Yang discovered a buffer overflow during script interactions with the canvas element in some
circumstances. If a user were tricked in to opening a specially crafted website in a browser-like context,
an attacker could potentially exploit this to cause a denial of service via application crash, or execute
arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2015-7189)
Shinto K Anto discovered that CORS preflight is bypassed when receiving non-standard Content-Type headers
in some circumstances. If a user were tricked in to opening a specially crafted website in a browser-like
context, an attacker could potentially exploit this to bypass same-origin restrictions. (CVE-2015-7193)
Gustavo Grieco discovered a buffer overflow in libjar in some circumstances. If a user were tricked in to
opening a specially crafted website in a browser-like context, an attacker could potentially exploit this
to cause a denial of service via application crash, or execute arbitrary code with the privileges of the
user invoking Thunderbird. (CVE-2015-7194)
Ehsan Akhgari discovered a mechanism for a web worker to bypass secure requirements for web sockets. If a
user were tricked in to opening a specially crafted website in a browser-like context, an attacker could
exploit this to bypass the mixed content web socket policy. (CVE-2015-7197)
Ronald Crane discovered several vulnerabilities through code-inspection. If a user were tricked in to
opening a specially crafted website in a browser-like context, an attacker could potentially exploit these
to cause a denial of service via application crash, or execute arbitrary code with the privileges of the
user invoking Thunderbird. (CVE-2015-7198, CVE-2015-7199, CVE-2015-7200)
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2819-1");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-7200");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2015-7182");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/05");
script_set_attribute(attribute:"patch_publication_date", value:"2015/12/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-globalmenu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-gnome-support");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-af");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ar");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ast");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-be");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-bg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-bn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-bn-bd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-br");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ca");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-cs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-cy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-da");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-de");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-dsb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-el");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-en");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-en-gb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-en-us");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-es");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-es-ar");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-es-es");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-et");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-eu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-fi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-fr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-fy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-fy-nl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ga");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ga-ie");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-gd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-gl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-he");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-hr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-hsb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-hu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-hy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-id");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-is");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-it");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ja");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ka");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ko");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-lt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-mk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-nb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-nb-no");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-nl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-nn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-nn-no");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pa-in");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pt-br");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-pt-pt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-rm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ro");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ru");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-si");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-sv-se");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ta");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-ta-lk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-tr");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-uk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-vi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-zh-cn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-zh-hans");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-zh-hant");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-locale-zh-tw");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-mozsymbols");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:thunderbird-testsuite");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:xul-ext-calendar-timezones");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:xul-ext-gdata-provider");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:xul-ext-lightning");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '14.04', 'pkgname': 'thunderbird', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-dev', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-globalmenu', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-gnome-support', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-af', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ar', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ast', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-be', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-bg', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-bn', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-bn-bd', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-br', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ca', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-cs', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-cy', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-da', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-de', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-dsb', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-el', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-en', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-en-gb', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-en-us', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-es', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-es-ar', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-es-es', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-et', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-eu', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-fi', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-fr', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-fy', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-fy-nl', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ga', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ga-ie', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-gd', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-gl', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-he', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-hr', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-hsb', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-hu', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-hy', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-id', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-is', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-it', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ja', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ka', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ko', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-lt', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-mk', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-nb', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-nb-no', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-nl', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-nn', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-nn-no', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pa', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pa-in', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pl', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pt', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pt-br', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-pt-pt', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-rm', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ro', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ru', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-si', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sk', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sl', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sq', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sr', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sv', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-sv-se', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ta', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-ta-lk', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-tr', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-uk', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-vi', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-zh-cn', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-zh-hans', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-zh-hant', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-locale-zh-tw', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-mozsymbols', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'thunderbird-testsuite', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'xul-ext-calendar-timezones', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'xul-ext-gdata-provider', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'},
{'osver': '14.04', 'pkgname': 'xul-ext-lightning', 'pkgver': '1:38.4.0+build3-0ubuntu0.14.04.1'}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
var extra = '';
extra += ubuntu_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'thunderbird / thunderbird-dev / thunderbird-globalmenu / etc');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4513
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7183
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7188
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7189
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7193
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7194
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7197
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7198
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7199
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7200
ubuntu.com/security/notices/USN-2819-1
Related
ubuntu
ubuntu
Thunderbird vulnerabilities
2015-12-01 00:00:00
Firefox vulnerabilities
2015-11-04 00:00:00
NSS vulnerabilities
2015-11-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2819-1)
2015-12-02 00:00:00
SUSE: Security Advisory for MozillaFirefox (SUSE-SU-2015:1926-1)
2015-11-07 00:00:00
nessus
nessus
Mozilla Thunderbird < 38.4 Multiple Vulnerabilities (Mac OS X)
2015-11-30 00:00:00
Mozilla Thunderbird < 38.4 Multiple Vulnerabilities
2016-03-17 00:00:00
Debian DSA-3393-1 : iceweasel - security update
2015-11-05 00:00:00
suse
suse
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-06 17:11:17
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-12 20:10:40
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)
2015-11-12 17:11:49
debian
debian
[SECURITY] [DSA 3393-1] iceweasel security update
2015-11-04 18:41:55
[SECURITY] [DSA 3410-1] icedove security update
2015-12-01 22:21:09
[SECURITY] [DLA 354-1] nss security update
2015-11-29 16:36:27
oraclelinux
oraclelinux
thunderbird security update
2015-11-27 00:00:00
firefox security update
2015-11-04 00:00:00
nss and nspr security update
2015-11-04 00:00:00
mageia
mageia
Updated firefox, nspr, nss packages fix security vulnerability
2015-11-04 21:03:05
Updated thunderbird packages fix security vulnerability
2015-11-28 02:11:20
Updated iceape packages fix security vulnerabilities
2015-11-17 00:36:58
redhat
redhat
(RHSA-2015:2519) Important: thunderbird security update
2015-11-26 00:00:00
(RHSA-2015:1982) Critical: firefox security update
2015-11-04 00:00:00
(RHSA-2015:1980) Critical: nss and nspr security update
2015-11-04 00:00:00
centos
centos
firefox security update
2015-11-04 15:58:03
thunderbird security update
2015-11-27 06:41:12
nspr, nss security update
2015-11-04 11:34:51
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:43:40
Brute Force Attack
2019-05-02 05:43:40
Privilege Escalation
2019-05-02 05:43:39
archlinux
archlinux
firefox: multiple issues
2015-11-04 00:00:00
nss: arbitrary code execution
2015-11-06 00:00:00
mozilla
mozilla
Vulnerabilities found through code inspection — Mozilla
2015-11-03 00:00:00
NSS and NSPR memory corruption issues — Mozilla
2015-11-03 00:00:00
Mixed content WebSocket policy bypass through workers — Mozilla
2015-11-03 00:00:00
f5
f5
ibm
ibm
Security Bulletin: IBM Security Access Manager for Mobile is affected by Network Security Services (NSS) vulnerabilities (CVE-2015-7181, CVE-2015-7182, CVE-2015-7183)
2018-06-16 21:38:59
slackware
slackware
[slackware-security] mozilla-nss
2015-11-06 17:08:58
amazon
amazon
Critical: nspr, nss-util, nss, jss
2015-11-05 01:58:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-11-03 00:00:00
kaspersky
kaspersky
KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-11-03 00:00:00
symantec
symantec
SA119 : Multiple NSS Vulnerabilities
2016-03-22 08:00:00
osv
osv
nss - security update
2015-11-29 00:00:00
nspr - security update
2015-11-19 00:00:00
prion
prion
Memory corruption
2015-11-05 05:59:00
Code injection
2015-11-05 05:59:00
Cross site scripting
2015-11-05 05:59:00
nvd
nvd
cvelist
cvelist
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
CVE-2015-7181
2015-11-05 05:59:05
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.096
Percentile
94.9%
Related for UBUNTU_USN-2819-1.NASL