Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2009:0258
HistoryMar 24, 2009 - 12:00 a.m.

(RHSA-2009:0258) Moderate: thunderbird security update

2009-03-2400:00:00
access.redhat.com
33

EPSS

0.483

Percentile

97.5%

JSON

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML mail content.
An HTML mail message containing malicious content could cause Thunderbird
to crash or, potentially, execute arbitrary code as the user running
Thunderbird. (CVE-2009-0352, CVE-2009-0353, CVE-2009-0772, CVE-2009-0774,
CVE-2009-0775)

Several flaws were found in the way malformed content was processed. An
HTML mail message containing specially-crafted content could potentially
trick a Thunderbird user into surrendering sensitive information.
(CVE-2009-0355, CVE-2009-0776)

Note: JavaScript support is disabled by default in Thunderbird. None of
the above issues are exploitable unless JavaScript is enabled.

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5i386thunderbird< 2.0.0.21-1.el5thunderbird-2.0.0.21-1.el5.i386.rpm
RedHat4ia64thunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.ia64.rpm
RedHat4s390thunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.s390.rpm
RedHat4i386thunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.i386.rpm
RedHat4s390xthunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.s390x.rpm
RedHat5srcthunderbird< 2.0.0.21-1.el5thunderbird-2.0.0.21-1.el5.src.rpm
RedHat4ppcthunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.ppc.rpm
RedHat5x86_64thunderbird< 2.0.0.21-1.el5thunderbird-2.0.0.21-1.el5.x86_64.rpm
RedHat4x86_64thunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.x86_64.rpm
RedHat4srcthunderbird< 1.5.0.12-19.el4thunderbird-1.5.0.12-19.el4.src.rpm

Related

openvas 94
nessus 39
centos 6
oraclelinux 4
fedora 43
ubuntu 4
redhat 3
suse 2
debian 1
osv 1
mozilla 1
securityvulns 1
openvas
openvas
CentOS Update for thunderbird CESA-2009:0258 centos4 i386
2011-08-09 00:00:00
CentOS Security Advisory CESA-2009:0258 (thunderbird)
2009-05-20 00:00:00
CentOS Security Advisory CESA-2009:0258 (thunderbird)
2009-05-20 00:00:00
nessus
nessus
Oracle Linux 4 : thunderbird (ELSA-2009-0258)
2013-07-12 00:00:00
CentOS 4 / 5 : thunderbird (CESA-2009:0258)
2009-05-26 00:00:00
Scientific Linux Security Update : thunderbird on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
centos
centos
thunderbird security update
2009-05-19 14:34:53
seamonkey security update
2009-03-11 03:59:33
seamonkey security update
2009-03-05 13:43:36
oraclelinux
oraclelinux
thunderbird security update
2009-03-24 00:00:00
seamonkey security update
2009-03-05 00:00:00
seamonkey security update
2009-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: thunderbird-2.0.0.21-1.fc9
2009-03-21 01:29:45
[SECURITY] Fedora 10 Update: thunderbird-2.0.0.21-1.fc10
2009-03-21 01:28:34
[SECURITY] Fedora 9 Update: xulrunner-1.9.0.7-1.fc9
2009-03-08 19:36:13
ubuntu
ubuntu
Thunderbird vulnerabilities
2009-03-19 00:00:00
Firefox vulnerabilities
2009-03-06 00:00:00
Firefox vulnerabilities
2009-03-06 00:00:00
redhat
redhat
(RHSA-2009:0325) Critical: seamonkey security update
2009-03-04 00:00:00
(RHSA-2009:0257) Critical: seamonkey security update
2009-02-04 00:00:00
(RHSA-2009:0315) Critical: firefox security update
2009-03-04 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-04-20 12:01:40
remote code execution in MozillaFirefox
2009-03-16 14:15:07
debian
debian
[SECURITY] [DSA 1751-1] New xulrunner packages fix several vulnerabilities
2009-03-22 21:30:20
osv
osv
xulrunner - several vulnerabilities
2009-03-22 00:00:00
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.9.0.6) — Mozilla
2009-02-03 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-01
2009-02-05 00:00:00

EPSS

0.483

Percentile

97.5%

JSON
Related for RHSA-2009:0258
openvas94nessus39centos6oraclelinux4fedora43ubuntu4redhat3suse2debian1osv1mozilla1securityvulns1