RedHatRHSA-2007:0078(RHSA-2007:0078) Critical: thunderbird security update
EPSS
Percentile
99.8%
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several flaws were found in the way Thunderbird processed certain malformed
JavaScript code. A malicious HTML mail message could execute JavaScript
code in such a way that may result in Thunderbird crashing or executing
arbitrary code as the user running Thunderbird. JavaScript support is
disabled by default in Thunderbird; these issues are not exploitable unless
the user has enabled JavaScript. (CVE-2007-0775, CVE-2007-0777, CVE-2007-1092)
A flaw was found in the way Thunderbird processed text/enhanced and
text/richtext formatted mail message. A specially crafted mail message
could execute arbitrary code with the privileges of the user running
Thunderbird. (CVE-2007-1282)
Several cross-site scripting (XSS) flaws were found in the way Thunderbird
processed certain malformed HTML mail messages. A malicious HTML mail
message could display misleading information which may result in a user
unknowingly divulging sensitive information such as a password.
(CVE-2006-6077, CVE-2007-0995, CVE-2007-0996)
A flaw was found in the way Thunderbird cached web content on the local
disk. A malicious HTML mail message may be able to inject arbitrary HTML
into a browsing session if the user reloads a targeted site. (CVE-2007-0778)
A flaw was found in the way Thunderbird displayed certain web content. A
malicious HTML mail message could generate content which could overlay user
interface elements such as the hostname and security indicators, tricking a
user into thinking they are visiting a different site. (CVE-2007-0779)
Two flaws were found in the way Thunderbird displayed blocked popup
windows. If a user can be convinced to open a blocked popup, it is possible
to read arbitrary local files, or conduct an XSS attack against the user.
(CVE-2007-0780, CVE-2007-0800)
Two buffer overflow flaws were found in the Network Security Services (NSS)
code for processing the SSLv2 protocol. Connecting to a malicious secure
web server could cause the execution of arbitrary code as the user running
Thunderbird. (CVE-2007-0008, CVE-2007-0009)
A flaw was found in the way Thunderbird handled the “location.hostname”
value during certain browser domain checks. This flaw could allow a
malicious HTML mail message to set domain cookies for an arbitrary site, or
possibly perform an XSS attack. (CVE-2007-0981)
Users of Thunderbird are advised to apply this update, which contains
Thunderbird version 1.5.0.10 that corrects these issues.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | i386 | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.i386.rpm |
| RedHat | 4 | ppc | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.ppc.rpm |
| RedHat | 4 | s390 | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.s390.rpm |
| RedHat | 4 | src | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.src.rpm |
| RedHat | 4 | s390x | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.s390x.rpm |
| RedHat | 4 | x86_64 | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.x86_64.rpm |
| RedHat | 4 | ia64 | thunderbird | < 1.5.0.10-0.1.el4 | thunderbird-1.5.0.10-0.1.el4.ia64.rpm |
Related
