Posts Tagged ‘Mozilla Thunderbird’


Vulnerabilities in Mozilla Firefox and ThunderbirdMultiple vulnerabilities in Mozilla Firefox, Firefox ESR and Thunderbird

The remote user can bypass certain security restrictions, gain access to sensitive information and compromise a vulnerable system.

Danger level: High
Availability of corrections: Yes
Quantity of vulnerabilities: 10

CVSSv2 Rating:

(AV:N/AC:M/Au:N/C:C/I:C/A:N/E:U/RL:W/RC:C) = Base:8.8/Temporal:7.1
(AV:N/AC:M/Au:N/C:C/I:C/A:N/E:U/RL:W/RC:C) = Base:8.8/Temporal:7.1
(AV:N/AC:M/Au:N/C:P/I:C/A:N/E:U/RL:W/RC:C) = Base:7.8/Temporal:6.3
(AV:N/AC:M/Au:N/C:C/I:C/A:N/E:U/RL:W/RC:C) = Base:8.8/Temporal:7.1
(AV:N/AC:M/Au:N/C:C/I:C/A:N/E:U/RL:W/RC:C) = Base:8.8/Temporal:7.1
(AV:N/AC:M/Au:N/C:P/I:C/A:N/E:U/RL:W/RC:C) = Base:7.8/Temporal:6.3
(AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:W/RC:C) = Base:4.3/Temporal:3.5
(AV:N/AC:M/Au:N/C:C/I:C/A:N/E:U/RL:W/RC:C) = Base:8.8/Temporal:7.1
(AV:N/AC:M/Au:N/C:P/I:C/A:N/E:U/RL:W/RC:C) = Base:7.8/Temporal:6.3 (more…)

Google Chrome and Mozilla products

Google Chrome and Mozilla products

Vulnerability: System compromise in Google Chrome

Danger level: High
Patch: Yes
Number of vulnerabilities: 1

CVE ID: CVE-2013-0912
Vector of operation: Remote
Impact: System Compromise

Affected products: Google Chrome 25.x
Affected versions: Google Chrome 25.C

Description:

Which can be exploited by malicious people to compromise a vulnerable system.
An error such as confusion in WebKit. A remote user can bypass the sandbox and execute arbitrary code on the target system.
Solution: To resolve the vulnerability patch from the manufacturer. (more…)

Vulnerability

Vulnerabilities in Mozilla

Vulnerability: Multiple vulnerabilities in Mozilla products

Danger: High
Patch: Yes
Number of vulnerabilities: 25

Affected products: Mozilla Firefox 17.x, Mozilla SeaMonkey 2.x, Mozilla Thunderbird 17.x

Affected versions: Mozilla Firefox 17.x, Mozilla SeaMonkey 2.x, Mozilla Thunderbird 17.x

Description:

Which can be exploited by malicious people to execute arbitrary code on the target system.

1. An unspecified error in the browser engine. This can be exploited to corrupt memory and execute arbitrary code on the target system.

2. An unspecified error in the browser engine. This can be exploited to corrupt memory and execute arbitrary code on the target system.

3. An unspecified error in the browser engine. This can be exploited to corrupt memory and execute arbitrary code on the target system. (more…)