This script is Copyright (C) 2012-2017 Tenable Network Security, Inc.
The remote Windows host contains a mail client that is potentially
affected by multiple vulnerabilities.
The installed version of Thunderbird 3.1.x is earlier than 3.1.18 and
is, therefore, potentially affected by the following vulnerabilities:
- A use-after-free error exists related to removed
nsDOMAttribute child nodes.(CVE-2011-3659)
- The IPv6 literal syntax in web addresses is not being
properly enforced. (CVE-2011-3670)
- Various memory safety issues exist. (CVE-2012-0442)
- Memory corruption errors exist related to the
decoding of Ogg Vorbis files and processing of
malformed XSLT stylesheets. (CVE-2012-0444,
See also :
Upgrade to Thunderbird 3.1.18 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true