PT-2007-1190 · Mozilla · Thunderbird
Mikhail Markin
·
Published
2007-02-23
·
Updated
2008-11-15
·
CVE-2006-5877
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Enigmail extension versions prior to 0.94.2
Description:
The issue concerns the improper handling of large, encrypted file e-mail attachments, which can be exploited by remote attackers to cause a denial of service, resulting in a crash. This has been demonstrated using Mozilla Thunderbird.
Recommendations:
For Enigmail extension versions prior to 0.94.2, update to version 0.94.2 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Thunderbird