Lucene search
Veracode Vulnerability DatabaseVERACODE:28257HistoryDec 06, 2020 - 3:40 a.m.
S/MIME Message Takeover
2020-12-0603:40:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
EPSS
0.006
Percentile
79.3%
thunderbird is vulnerable to S/MIME Message Takeover Attacks. A malicious S/MIME message consisting of an inner encryption layer and an outer SignedData layer was shown as having a valid digital signature despite the signer having no access to the contents of the encrypted message.
References
lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
bugzilla.mozilla.org/show_bug.cgi?id=1240290
lists.debian.org/debian-lts-announce/2019/11/msg00017.html
seclists.org/bugtraq/2019/Nov/24
security-tracker.debian.org/tracker/CVE-2019-11755
usn.ubuntu.com/4202-1/
usn.ubuntu.com/4335-1/
www.debian.org/security/2019/dsa-4571
www.mozilla.org/security/advisories/mfsa2019-32/
Related
nessus
nessus
Mozilla Thunderbird < 68.1.1
2019-09-27 00:00:00
RHEL 5 : thunderbird (Unpatched Vulnerability)
2024-05-11 00:00:00
Mozilla Thunderbird < 68.1.1
2019-09-27 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerability
2019-10-03 23:23:00
redhatcve
redhatcve
CVE-2019-11755
2019-10-17 15:21:16
mozilla
mozilla
Security vulnerabilities fixed in - Thunderbird 68.1.1 — Mozilla
2019-09-25 00:00:00
kaspersky
kaspersky
KLA11573 SUI vulnerability in Mozilla Thunderbird
2019-09-25 00:00:00
nvd
nvd
CVE-2019-11755
2019-09-27 18:15:14
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0292)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-4571-1)
2019-11-19 00:00:00
Debian: Security Advisory (DLA-1997-1)
2019-11-26 00:00:00
prion
prion
Code injection
2019-09-27 18:15:00
ubuntucve
ubuntucve
CVE-2019-11755
2019-09-27 00:00:00
debiancve
debiancve
CVE-2019-11755
2019-09-27 18:15:14
cve
cve
CVE-2019-11755
2019-09-27 18:15:14
cvelist
cvelist
CVE-2019-11755
2019-09-27 17:10:44
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 68.1.2-alt1
2019-10-13 00:00:00
debian
debian
[SECURITY] [DSA 4571-1] thunderbird security update
2019-11-17 21:55:35
[SECURITY] [DLA 1997-1] thunderbird security update
2019-11-18 16:31:45
osv
osv
thunderbird - security update
2019-11-17 00:00:00
thunderbird - security update
2019-11-18 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2019-11-26 00:00:00
Thunderbird regression
2019-12-10 00:00:00
Thunderbird vulnerabilities
2020-04-21 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2019-10-04 00:00:00
Security update for MozillaThunderbird (important)
2019-10-04 00:00:00