Mozilla Thunderbird Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (E-mail Client) > Mozilla Thunderbird

Vendors: Mozilla.org

Mozilla Thunderbird Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information

SecurityTracker Alert ID: 1025941

SecurityTracker URL: http://securitytracker.com/id/1025941

CVE Reference: CVE-2011-0084, CVE-2011-2378, CVE-2011-2982, CVE-2011-2983 (Links to External Site)

Date: Aug 16 2011

Impact: Disclosure of system information, Execution of arbitrary code via network, User access via network

Version(s): 3.1 and prior versions

Description: Several vulnerabilities were reported in Mozilla Thunderbird. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain potentially sensitive information.

A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory error and execute arbitrary code on the target system [CVE-2011-2982]. The code will run with the privileges of the target user.

Gary Kwong, Igor Bukanov, Nils, and Bob Clary reported these vulnerabilities.

A remote user can trigger a dangling pointer flaw in SVGTextElement.getCharNumAtPosition() [CVE-2011-0084].

regenrecht reported this vulnerability (via TippingPoint's Zero Day Initiative).

The appendChild() function does not properly manage DOM objects and can trigger an invalid pointer dereference [CVE-2011-2378].

regenrecht reported this vulnerability (via TippingPoint's Zero Day Initiative).

When RegExp.input is set, a remote user can read data from other domains [CVE-2011-2983].

shutdown reported this vulnerability.

[Editor's note: Red Hat reported that these flaws affect Thunderbird. Mozilla had not issued an advisory for Thunderbird at the time of this entry.]

Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

A remote user can obtain potentially sensitive information.

Solution: No solution was available at the time of this entry.

Vendor URL: www.mozilla.org/ (Links to External Site)

Cause: Access control error, Boundary error

Underlying OS: Linux (Any), UNIX (Any), Windows (Any)

Message History: This archive entry has one or more follow-up message(s) listed below.

Aug 17 2011	(Red Hat Issues Fix) Mozilla Thunderbird Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information (bugzilla@redhat.com) Red Hat has issued a fix for Red Hat Enterprise Linux 4 and 5.
Aug 17 2011	(Red Hat Issues Fix) Mozilla Thunderbird Bugs Let Remote Users Execute Arbitrary Code and Obtain Potentially Sensitive Information (bugzilla@redhat.com) Red Hat has issued a fix for Red Hat Enterprise Linux 6.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC