Chiaki Ishikawa

#8883of 53,633
30.8Total CVSS
Vulnerabilities · 4
Medium
2
High
2
PT-2021-2598
10
2021-01-26
Mozilla · Firefox · CVE-2021-23962
**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 85 **Description** The issue is related to the incorrect use of the 'RowCountChanged' method, potentially leading to a user-after-poison and a crash. This could allow a remote attacker to elevate privileges or cause a denial of service. The vulnerability is associated with a buffer overflow in memory. **Recommendations** For versions prior to 85, update to version 85 or later to resolve the issue. As a temporary workaround, consider restricting access to the `RowCountChanged` method until a patch is available.
PT-2020-5816
10
2020-12-01
Mozilla · Thunderbird · CVE-2020-26970
Name of the Vulnerable Software and Affected Versions: Thunderbird versions prior to 78.5.1 Description: The issue is related to a buffer overflow in memory, which can be exploited by a remote attacker to execute arbitrary code. When reading SMTP server status codes, Thunderbird writes an integer value to a position on the stack intended for a single byte, leading to potential stack corruption that may be exploitable, depending on the processor architecture and stack layout. Recommendations: For versions prior to 78.5.1, update to version 78.5.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of SMTP server status code reading functionality until a patch is available.
PT-2020-19225
4.3
2020-02-11
Mozilla · Thunderbird · CVE-2020-6792
**Name of the Vulnerable Software and Affected Versions** Thunderbird versions prior to 68.5 **Description** The issue arises when deriving an identifier for an email message, where uninitialized memory is used in addition to the message contents. **Recommendations** For versions prior to 68.5, update to version 68.5 or later to resolve the issue.
PT-2020-6731
6.5
2020-02-11
Mozilla · Thunderbird · CVE-2020-6793
**Name of the Vulnerable Software and Affected Versions** Thunderbird versions prior to 68.5 **Description** The issue is related to Thunderbird's processing of email messages with ill-formed envelopes, which could lead to reading data from a random memory location. This is due to a buffer overflow in memory, allowing an attacker to potentially disclose protected information by sending a specially crafted email message. **Recommendations** For versions prior to 68.5, update to version 68.5 or later to resolve the issue.