This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mac OS X host contains a mail client that is affected by
The version of Thunderbird 24.x installed on the remote Mac OS X host
is a version prior to 24.8. It is, therefore, affected by the
following vulnerabilities :
- Multiple memory safety flaws exist within the browser
engine. Exploiting these, an attacker can cause a denial
of service or execute arbitrary code. (CVE-2014-1562)
- A use-after-free vulnerability exists due to improper
handling of text layout in directionality resolution.
A remote attacker can exploit this to execute arbitrary
See also :
Upgrade to Thunderbird 24.8 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false