Zurück zur CVE-Übersicht
CVE-2009-2210
CRITICAL(9.3)AV:N/AC:M/Au:N/C:C/I:C/A:C
Risk Signal Score24/100 — NIEDRIG
- CVSS 9.3 — Kritisch
EPSS-Score
4%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
9.3
Technische Schwere
Beschreibung
Mozilla Thunderbird before 2.0.0.22 and SeaMonkey before 1.1.17 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a multipart/alternative e-mail message containing a text/enhanced part that triggers access to an incorrect object type.
Referenzen
- http://secunia.com/advisories/35561
- http://secunia.com/advisories/35602
- http://secunia.com/advisories/35633
- http://secunia.com/advisories/35882
- http://securitytracker.com/id?1022433
- http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware...
- http://www.debian.org/security/2009/dsa-1830
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:141
- http://www.mozilla.org/security/announce/2009/mfsa2009-33.html
- http://www.redhat.com/support/errata/RHSA-2009-1134.html