Mozilla Thunderbird 3.1.x < 3.1.14 Untrusted CA

This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains a mail client that contains support
for an untrustworthy certificate authority.

Description :

The installed version of Thunderbird 3.1.x is earlier than 3.1.14.
Due to a recent attack against certificate authority DigiNotar,
Mozilla has added explicit distrust to the DigiNotar root certificate
and several intermediates in this version of Thunderbird.

Note this is a further fix to MFSA 2011-34, which removed the
DigiNotar root certificate.

See also :

Solution :

Upgrade to Thunderbird 3.1.14 or later.

Risk factor :

Medium / CVSS Base Score : 5.8

Family: Windows

Nessus Plugin ID: 56121 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now