Lucene search
Veracode Vulnerability DatabaseVERACODE:19327HistoryMay 16, 2019 - 3:00 a.m.
Filename Spoofing
2019-05-1603:00:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.006 Low
EPSS
Percentile
78.6%
Thunderbird ESR and Thunderbird are vulnerable to filename spoofing. A remote attacker could spoof the filename of an attachment and display an arbitrary attachment name resulting in a user opening a different file type than expected.
References
www.securitytracker.com/id/1040946
access.redhat.com/errata/RHSA-2018:1725
access.redhat.com/errata/RHSA-2018:1726
access.redhat.com/security/updates/classification/#important
bugzilla.mozilla.org/show_bug.cgi?id=1411732
lists.debian.org/debian-lts-announce/2018/05/msg00013.html
security.gentoo.org/glsa/201811-13
usn.ubuntu.com/3660-1/
www.debian.org/security/2018/dsa-4209
www.mozilla.org/security/advisories/mfsa2018-13/
Related
cve
cve
CVE-2018-5170
2018-06-11 21:29:15
nvd
nvd
CVE-2018-5170
2018-06-11 21:29:15
debiancve
debiancve
CVE-2018-5170
2018-06-11 21:29:15
prion
prion
Design/Logic Flaw
2018-06-11 21:29:00
ubuntucve
ubuntucve
CVE-2018-5170
2018-05-23 00:00:00
redhatcve
redhatcve
CVE-2018-5170
2018-05-21 07:56:09
cvelist
cvelist
CVE-2018-5170
2018-06-11 21:00:00
openvas
openvas
Debian: Security Advisory (DSA-4209-1)
2018-05-24 00:00:00
CentOS Update for thunderbird CESA-2018:1726 centos6
2018-05-30 00:00:00
nessus
nessus
Oracle Linux 6 : thunderbird (ELSA-2018-1726)
2018-05-25 00:00:00
Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20180524)
2018-05-25 00:00:00
CentOS 6 : thunderbird (CESA-2018:1726)
2018-05-30 00:00:00
debian
debian
[SECURITY] [DSA 4209-1] thunderbird security update
2018-05-25 04:58:06
[SECURITY] [DLA 1382-1] thunderbird security update
2018-05-25 08:38:38
amazon
amazon
Critical: thunderbird
2018-06-07 23:30:00
osv
osv
thunderbird - security update
2018-05-25 00:00:00
thunderbird - security update
2018-05-25 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2018-05-24 00:00:00
thunderbird security update
2018-05-24 00:00:00
centos
centos
thunderbird security update
2018-05-25 16:39:54
thunderbird security update
2018-05-29 17:26:47
redhat
redhat
(RHSA-2018:1726) Important: thunderbird security update
2018-05-24 18:29:56
(RHSA-2018:1725) Important: thunderbird security update
2018-05-24 18:29:53
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 52.8.0-alt1
2018-05-19 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2018-05-25 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 52.8 — Mozilla
2018-05-18 00:00:00
suse
suse
Security update for Mozilla Thunderbird (important)
2018-05-21 03:08:11
Security update for Mozilla Thunderbird (important)
2018-05-21 03:06:59
archlinux
archlinux
[ASA-201805-21] thunderbird: multiple issues
2018-05-21 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2018-05-30 22:55:44
kaspersky
kaspersky
KLA11251 Multiple vulnerabilities in Mozilla Thunderbird
2018-05-18 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2018-11-24 00:00:00