Thunderbird 7.x Multiple Vulnerabilities (Mac OS X)

This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.


Synopsis :

The remote Mac OS X host contains an email client that is potentially
affected by multiple vulnerabilities.

Description :

The installed version of Thunderbird 7.x is potentially affected by
the following security issues :

- Certain invalid sequences are not handled properly in
'Shift-JIS' encoding, which can allow cross-site
scripting attacks. (CVE-2011-3648)

- Profiling JavaScript files with many functions can cause
the application to crash. It may be possible to trigger
this behavior even when the debugging APIs are not being
used. (CVE-2011-3650)

- Multiple memory safety issues exist. (CVE-2011-3651)

- An unchecked memory allocation failure can cause the
application to crash. (CVE-2011-3652)

- An issue with WebGL graphics and GPU drivers can allow
cross-origin image theft. (CVE-2011-3653)

- An error exists related to SVG 'mpath' linking to a
non-SVG element, which can result in potentially
exploitable application crashes. (CVE-2011-3654)

- An error in internal privilege checking can allow
web content to obtain elevated privileges.
(CVE-2011-3655)

See also :

http://www.mozilla.org/security/announce/2011/mfsa2011-47.html
http://www.mozilla.org/security/announce/2011/mfsa2011-48.html
http://www.mozilla.org/security/announce/2011/mfsa2011-49.html
http://www.mozilla.org/security/announce/2011/mfsa2011-51.html
http://www.mozilla.org/security/announce/2011/mfsa2011-52.html

Solution :

Upgrade to Thunderbird 8.0 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: MacOS X Local Security Checks

Nessus Plugin ID: 56758 ()

Bugtraq ID: 50592
50593
50594
50595
50597
50600
50602

CVE ID: CVE-2011-3648
CVE-2011-3650
CVE-2011-3651
CVE-2011-3652
CVE-2011-3653
CVE-2011-3654
CVE-2011-3655