Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24531

HistoryApr 10, 2020 - 12:56 a.m.

Remote Code Execution (RCE)

2020-04-1000:56:31

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

23

EPSS

0.964

Percentile

99.6%

Mozilla Thunderbird is vulnerable to remote code execution (RCE). A flaw was found in the way Thunderbird handled the nsTreeSelection element. Malformed content could cause Thunderbird to execute arbitrary code with the privileges of the user running Thunderbird.

References

downloads.avaya.com/css/P8/documents/100134543

downloads.avaya.com/css/P8/documents/100144158

securityreason.com/securityalert/8310

www.debian.org/security/2011/dsa-2227

www.debian.org/security/2011/dsa-2228

www.debian.org/security/2011/dsa-2235

www.mandriva.com/security/advisories?name=MDVSA-2011:079

www.mozilla.org/security/announce/2011/mfsa2011-13.html

access.redhat.com/errata/RHSA-2011:0475

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/show_bug.cgi?id=630919

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14020

EPSS

0.964

Percentile

99.6%

Related for VERACODE:24531

checkpoint_advisories2 saint4 exploitdb2 cve1 cvelist1 prion1 zdi1 packetstorm1 ubuntucve1 nvd1 securityvulns2 mozilla1 openvas57 nessus42 redhat4 centos3 oraclelinux4 debian4 osv3 ubuntu5 suse1 gentoo1