[FEDORA-2007-641] Fedora 6: thunderbird
Severity
High
Affected Packages
1
CVEs
6
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several flaws were found in the way Thunderbird processed
certain malformed JavaScript code. A malicious HTML email
message containing JavaScript code could cause Thunderbird
to crash or potentially execute arbitrary code as the user
running Thunderbird. JavaScript support is disabled by
default in Thunderbird; these issues are not exploitable
unless the user has enabled JavaScript. (CVE-2007-3089,
CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737,
CVE-2007-3738)
Users of Thunderbird are advised to upgrade to these erratum
packages, which contain backported patches that correct
these issues.
| Package | Affected Version |
|---|---|
 pkg:rpm/fedora/thunderbird?distro=fedora-6
|
< 1.5.0.12.2.fc6 |
- ID
- FEDORA-2007-641
- Severity
- high
- Severity from
- CVE-2007-3734
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2007-641
- Published
-
2007-07-20T16:21:25
(17 years ago) - Modified
-
2007-07-20T16:21:25
(17 years ago) - Rights
- Copyright 2007 Red Hat, Inc.
- Other Advisories
ELSA-2007-0724
FREEBSD:E190CA65-3636-11DC-A697-000C6EC775D9
GLSA-200708-09
USN-490-1
VU:143297| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/fedora/thunderbird?distro=fedora-6 | fedora |
thunderbird
|
< 1.5.0.12.2.fc6 | fedora-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |