Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Windows >> Mozilla Thunderbird < 1.0.2


Vulnerability Assessment Details

Mozilla Thunderbird < 1.0.2

Vulnerability Assessment Summary
Acertains the version of Mozilla Thunderbird

Detailed Explanation for this Vulnerability Assessment

The remote host is using Mozilla Thunderbird, an email client.

The remote version of this software is vulnerable to a heap overflow
vulnerability when it processes GIF images.

A possible hacker may exploit this flaw to execute arbitrary flaw on the remote
host. To exploit this flaw, a possible hacker would need to send a malformed
GIF image to a victim on the remote host and wait for him to open it.

Solution : Upgrade to Mozilla ThunderBird 1.0.2
Network Security Threat Level: High

Networks Security ID: 12881

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors

Matched Pair of Intel Xeon E5-2670 SR0KX 2.60GHz 20MB 8-Core 8.0GT/s LGA2011 CPU
$98.99
Matched Pair of Intel Xeon E5-2670 SR0KX 2.60GHz 20MB 8-Core 8.0GT/s LGA2011 CPU pictureINTEL XEON CPU KIT E5-2650L 8 CORE 8C 1.8GHZ FOR DELL POWEREDGE C8220 E5-2650L
$1305.0
INTEL XEON CPU KIT E5-2650L 8 CORE 8C 1.8GHZ FOR DELL POWEREDGE C8220 E5-2650L pictureHP CPU INTEL XEON 8 CORE PROCESSOR E5-2667V3 3.2GHZ FOR HP Z640 Z840 790100-001
$1595.0
HP CPU INTEL XEON 8 CORE PROCESSOR E5-2667V3 3.2GHZ FOR HP Z640 Z840 790100-001 pictureINTEL XEON CPU KIT E5-2690 8 CORE 2.9GHZ FOR HP PROLIANT ML350P G8 660605-B21
$495.0
INTEL XEON CPU KIT E5-2690 8 CORE 2.9GHZ FOR HP PROLIANT ML350P G8 660605-B21 picture


Discussions

No Discussions have been posted on this vulnerability.