ID de Prueba:	1.3.6.1.4.1.25623.1.0.900801
Categoría:	Denial of Service
Título:	Mozilla Thunderbird Memory Corruption Vulnerabilities July-09 (Windows)
Resumen:	The host is installed with Thunderbird and is prone to Remote;Code Execution vulnerabilities.
Descripción:	Summary: The host is installed with Thunderbird and is prone to Remote Code Execution vulnerabilities. Vulnerability Insight: The flaws are due to errors in the browser engine which can be exploited via some of the known vectors and additional unspecified vectors. Vulnerability Impact: Successful exploitation could allow remote attackers to execute arbitrary code and / or to cause memory corruption. Both could result in a denial-of-service condition. Affected Software/OS: Mozilla Thunderbird version 2.0.0.22 and prior on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 35765 BugTraq ID: 35769 BugTraq ID: 35775 BugTraq ID: 35770 BugTraq ID: 35776 Common Vulnerability Exposure (CVE) ID: CVE-2009-2462 BugTraq ID: 35758 http://www.securityfocus.com/bid/35758 https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01032.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10906 RedHat Security Advisories: RHSA-2009:1162 http://rhn.redhat.com/errata/RHSA-2009-1162.html RedHat Security Advisories: RHSA-2009:1163 http://rhn.redhat.com/errata/RHSA-2009-1163.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html http://secunia.com/advisories/35914 http://secunia.com/advisories/35943 http://secunia.com/advisories/35944 http://secunia.com/advisories/35947 http://secunia.com/advisories/36005 http://secunia.com/advisories/36145 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020800.1-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-265068-1 SuSE Security Announcement: SUSE-SA:2009:039 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html SuSE Security Announcement: SUSE-SA:2009:042 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html http://www.vupen.com/english/advisories/2009/1972 http://www.vupen.com/english/advisories/2009/2152 http://www.vupen.com/english/advisories/2010/0650 Common Vulnerability Exposure (CVE) ID: CVE-2009-2463 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10369 http://secunia.com/advisories/38977 http://secunia.com/advisories/39001 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://www.ubuntu.com/usn/USN-915-1 http://www.vupen.com/english/advisories/2010/0648 Common Vulnerability Exposure (CVE) ID: CVE-2009-2464 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9594 Common Vulnerability Exposure (CVE) ID: CVE-2009-2465 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10402 Common Vulnerability Exposure (CVE) ID: CVE-2009-2466 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9820
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.