Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2012:1362
HistoryOct 12, 2012 - 12:00 a.m.

(RHSA-2012:1362) Critical: thunderbird security update

2012-10-1200:00:00
access.redhat.com
18

0.023 Low

EPSS

Percentile

89.6%

JSON

Mozilla Thunderbird is a standalone mail and newsgroup client.

A flaw was found in the way Thunderbird handled security wrappers.
Malicious content could cause Thunderbird to execute arbitrary code with
the privileges of the user running Thunderbird. (CVE-2012-4193)

Red Hat would like to thank the Mozilla project for reporting this issue.
Upstream acknowledges moz_bug_r_a4 as the original reporter.

Note: This issue cannot be exploited by a specially-crafted HTML mail
message as JavaScript is disabled by default for mail messages. It could be
exploited another way in Thunderbird, for example, when viewing the full
remote content of an RSS feed.

All Thunderbird users should upgrade to this updated package, which
corrects this issue. After installing the update, Thunderbird must be
restarted for the changes to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6ppc64thunderbird-debuginfo< 10.0.8-2.el6_3thunderbird-debuginfo-10.0.8-2.el6_3.ppc64.rpm
RedHat5i386thunderbird< 10.0.8-2.el5_8thunderbird-10.0.8-2.el5_8.i386.rpm
RedHat6i686thunderbird-debuginfo< 10.0.8-2.el6_3thunderbird-debuginfo-10.0.8-2.el6_3.i686.rpm
RedHat5i386thunderbird-debuginfo< 10.0.8-2.el5_8thunderbird-debuginfo-10.0.8-2.el5_8.i386.rpm
RedHat6x86_64thunderbird-debuginfo< 10.0.8-2.el6_3thunderbird-debuginfo-10.0.8-2.el6_3.x86_64.rpm
RedHat6s390xthunderbird< 10.0.8-2.el6_3thunderbird-10.0.8-2.el6_3.s390x.rpm
RedHat6srcthunderbird< 10.0.8-2.el6_3thunderbird-10.0.8-2.el6_3.src.rpm
RedHat6x86_64thunderbird< 10.0.8-2.el6_3thunderbird-10.0.8-2.el6_3.x86_64.rpm
RedHat6i686thunderbird< 10.0.8-2.el6_3thunderbird-10.0.8-2.el6_3.i686.rpm
RedHat6s390xthunderbird-debuginfo< 10.0.8-2.el6_3thunderbird-debuginfo-10.0.8-2.el6_3.s390x.rpm
Rows per page:
1-10 of 141

Related

redhat 1
cve 2
openvas 44
oraclelinux 2
nvd 2
veracode 1
ubuntucve 2
nessus 29
prion 2
centos 2
cvelist 2
mozilla 1
suse 3
ubuntu 1
freebsd 1
securityvulns 1
ibm 2
gentoo 1
redhat
redhat
(RHSA-2012:1361) Critical: xulrunner security update
2012-10-12 00:00:00
cve
cve
CVE-2012-4193
2012-10-12 10:44:20
CVE-2012-4192
2012-10-12 10:44:20
openvas
openvas
CentOS Update for thunderbird CESA-2012:1362 centos5
2012-10-16 00:00:00
CentOS Update for xulrunner CESA-2012:1361 centos5
2012-10-16 00:00:00
CentOS Update for xulrunner CESA-2012:1361 centos6
2012-10-16 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-10-12 00:00:00
xulrunner security update
2012-10-12 00:00:00
nvd
nvd
CVE-2012-4193
2012-10-12 10:44:20
CVE-2012-4192
2012-10-12 10:44:20
veracode
veracode
Same Origin Policy Bypass
2019-01-15 08:58:46
ubuntucve
ubuntucve
CVE-2012-4193
2012-10-11 00:00:00
CVE-2012-4192
2012-10-10 00:00:00
nessus
nessus
Oracle Linux 6 : thunderbird (ELSA-2012-1362)
2013-07-12 00:00:00
CentOS 5 / 6 : xulrunner (CESA-2012:1361)
2012-10-15 00:00:00
RHEL 5 / 6 : thunderbird (RHSA-2012:1362)
2012-10-15 00:00:00
prion
prion
Design/Logic Flaw
2012-10-12 10:44:00
Design/Logic Flaw
2012-10-12 10:44:00
centos
centos
xulrunner security update
2012-10-12 21:47:30
thunderbird security update
2012-10-13 02:05:00
cvelist
cvelist
CVE-2012-4193
2012-10-12 10:00:00
CVE-2012-4192
2012-10-12 10:00:00
mozilla
mozilla
defaultValue security checks not applied — Mozilla
2012-10-11 00:00:00
suse
suse
MozillaFirefox: update to Firefox 16.0.1 (important)
2012-10-15 15:08:30
Security update for Mozilla Firefox (important)
2012-10-16 22:08:48
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-10-12 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-10-09 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-10-29 00:00:00
ibm
ibm
Security Bulletin: Storwize V7000 Unified V1.4.1.0 Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

0.023 Low

EPSS

Percentile

89.6%

JSON
Related for RHSA-2012:1362
redhat1cve2openvas44oraclelinux2nvd2veracode1ubuntucve2nessus29prion2centos2cvelist2mozilla1suse3ubuntu1freebsd1securityvulns1ibm2gentoo1