Mozilla Thunderbird < 6.0.2 Untrusted CA

This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains a mail client that contains support
for an untrustworthy certificate authority.

Description :

The installed version of Thunderbird is earlier than 6.0.2. Due
to a recent attack against certificate authority DigiNotar, Mozilla
has added explicit distrust to the DigiNotar root certificate and
several intermediates in this version of Thunderbird.

Note this is a further fix to MFSA 2011-34, which removed the
DigiNotar root certificate.

See also :

Solution :

Upgrade to Thunderbird 6.0.2 or later.

Risk factor :

Medium / CVSS Base Score : 5.8

Family: Windows

Nessus Plugin ID: 56122 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now