PT-2010-1975 · Mozilla · Seamonkey+1
Paul Fisher
·
Published
2010-03-22
·
Updated
2017-09-19
·
CVE-2010-0161
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Mozilla Thunderbird versions prior to 2.0.0.24
SeaMonkey versions prior to 1.1.19
Description
The issue allows remote SMTP, IMAP, and POP servers to cause a denial of service or possibly execute arbitrary code via crafted data in a session that uses SSPI, resulting in heap memory corruption and application crash.
Recommendations
For Mozilla Thunderbird versions prior to 2.0.0.24, update to version 2.0.0.24 or later.
For SeaMonkey versions prior to 1.1.19, update to version 1.1.19 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Thunderbird
Seamonkey