Friday, October 22, 2010

Mozilla thunderbird: Moderate security update

Users of Mozilla Thunderbird please be advised of a Moderate security update that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com
RHSA-2010:0780-01: [RHSA-2010:0780-01] Moderate: thunderbird security update
Product: Red Hat Enterprise Linux
Description:



Mozilla Thunderbird is a standalone mail and newsgroup client.



Several flaws were found in the processing of malformed HTML mail content.

An HTML mail message containing malicious content could cause Thunderbird

to crash or, potentially, execute arbitrary code with the privileges of the

user running Thunderbird. (CVE-2010-3176, CVE-2010-3180)



Note: JavaScript support is disabled by default in Thunderbird. The above

issues are not exploitable unless JavaScript is enabled.
Read more at www.criticalwatch.com
 
See this Amp at http://bit.ly/bn5VgF

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)