PT-2021-3563 · Mozilla+8 · Thunderbird+8

Damian Poddebniak

+1

·

Published

2021-07-13

·

Updated

2024-06-15

·

CVE-2021-29969

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Thunderbird versions prior to 78.12
Description The issue is related to insufficient input validation in the Mozilla Thunderbird email client. It can be exploited by a remote attacker in a "man-in-the-middle" (MITM) scenario, allowing the execution of arbitrary code. Specifically, if Thunderbird is configured to use STARTTLS for an IMAP connection and an attacker injects IMAP server responses before the STARTTLS handshake is complete, Thunderbird may display incorrect information, such as non-existent folders on the IMAP server.
Recommendations For versions prior to 78.12, update to version 78.12 or later to resolve the issue. As a temporary workaround, consider disabling the use of STARTTLS for IMAP connections until a patch is applied. Restrict access to IMAP servers to minimize the risk of exploitation. Avoid using IMAP connections that do not complete the STARTTLS handshake.

Fix

Command Injection

Files Accessible to External Parties

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-552

Related Identifiers

ALT-PU-2021-2233
ALT-PU-2021-2248
ALT-PU-2021-2255
BDU:2021-03662
CESA-2021_2883
CVE-2021-29969
DLA-2711-1
DSA-4940-1
MGASA-2021-0355
OPENSUSE-SU-2021:1091-1
OPENSUSE-SU-2021:2458-1
OPENSUSE-SU-2021_1091-1
OPENSUSE-SU-2021_2458-1
OPENSUSE-SU-2024:10601-1
RHSA-2021:2881
RHSA-2021:2882
RHSA-2021:2883
RHSA-2021:2914
RHSA-2021_2881
RHSA-2021_2883
RLSA-2021:2883
SUSE-SU-2021:2458-1
USN-5058-1

Affected Products

Alt Linux
Astra Linux
Centos
Linuxmint
Red Hat
Rocky Linux
Suse
Thunderbird
Ubuntu