|
Answer» TITLE:
MOZILLA THUNDERBIRD Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA28808
VERIFY ADVISORY:
http://secunia.com/advisories/28808/
CRITICAL:
Highly critical
IMPACT:
Security Bypass, Exposure of sensitive information, DoS, System
access
WHERE:
>From remote
SOFTWARE:
Mozilla Thunderbird 2.x
http://secunia.com/product/14070/
DESCRIPTION:
Some vulnerabilities have been reported in Mozilla Thunderbird, which
can be exploited by MALICIOUS people to disclose sensitive
information, bypass certain security restrictions, or potentially to
compromise a USER's system.
For more information:
SA28622
SA28758
The vulnerabilities are reported in versions PRIOR to 2.0.0.12.
SOLUTION:
Some of the vulnerabilities will be fixed in an upcoming version
2.0.0.12.
Disabling Javascript can mitigate some of the vulnerabilities.
|
