vendor:
Thunderbird and Seamonkey
by:
Mozilla Security Team
9.3
CVSS
HIGH
Remote Code Execution
119
CWE
Product Name: Thunderbird and Seamonkey
Affected Version From: Mozilla Thunderbird 2.0.0.23
Affected Version To: Mozilla Seamonkey 2.0
Patch Exists: YES
Related CWE: CVE-2008-2785
CPE: a:mozilla:thunderbird:2.0.0.23
Metasploit:
https://www.rapid7.com/db/vulnerabilities/centos_linux-cesa-2008-0616/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cesa-2008-0599/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cesa-2008-0598/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0616/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0599/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0597/, https://www.rapid7.com/db/vulnerabilities/mozilla-thunderbird-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/mozilla-seamonkey-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/mfsa2008-34-cve-2008-2785/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0598/
Other Scripts:
https://www.infosecmatter.com/nessus-plugin-library/?id=33571, https://www.infosecmatter.com/nessus-plugin-library/?id=33741, https://www.infosecmatter.com/nessus-plugin-library/?id=33567, https://www.infosecmatter.com/nessus-plugin-library/?id=43702, https://www.infosecmatter.com/nessus-plugin-library/?id=67731, https://www.infosecmatter.com/nessus-plugin-library/?id=33841, https://www.infosecmatter.com/nessus-plugin-library/?id=33842, https://www.infosecmatter.com/nessus-plugin-library/?id=60449, https://www.infosecmatter.com/nessus-plugin-library/?id=35314, https://www.infosecmatter.com/nessus-plugin-library/?id=33750
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2008
jar50.dll Remote Code Execution Vulnerability
A remote code execution vulnerability exists in jar50.dll, a library used by Mozilla Thunderbird and Mozilla Seamonkey. An attacker can exploit this vulnerability by sending a specially crafted email with a malicious jar file attachment. The vulnerability is caused by a buffer overflow in the jar50.dll library when processing a malicious jar file. This can allow an attacker to execute arbitrary code in the context of the application.
Mitigation:
Users should upgrade to the latest version of Mozilla Thunderbird and Mozilla Seamonkey.