CVE-2009-2210

Name of the Vulnerable Software and Affected Versions Mozilla Thunderbird versions prior to 2.0.0.22 SeaMonkey versions prior to 1.1.17

Description The issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly execute arbitrary code. This is achieved through a multipart/alternative e-mail message that contains a text/enhanced part, which triggers access to an incorrect object type.

Recommendations For Mozilla Thunderbird versions prior to 2.0.0.22, update to version 2.0.0.22 or later to resolve the issue. For SeaMonkey versions prior to 1.1.17, update to version 1.1.17 or later to resolve the issue.