Mozilla Thunderbird < 60.0 Multiple Vulnerabilities (macOS)

High Nessus Plugin ID 111980

Synopsis

The remote macOS or Mac OS X host contains a mail client that is affected by multiple vulnerabilities.

Description

The version of Mozilla Thunderbird installed on the remote OSX host is prior to 60.0. It is, therefore, affected by multiple vulnerabilities.

Solution

Upgrade to Mozilla Thunderbird version 60.0 or later.

See Also

https://www.mozilla.org/en-US/security/advisories/mfsa2018-19/

Plugin Details

Severity: High

ID: 111980

File Name: macosx_thunderbird_60_0.nasl

Version: 1.3

Type: local

Agent: macosx

Published: 2018/08/20

Updated: 2018/12/07

Dependencies: 56557

Risk Information

Risk Factor: High

CVSS Score Source: CVE-2018-12368

CVSS v2.0

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS v3.0

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:mozilla:thunderbird

Patch Publication Date: 2018/08/06

Vulnerability Publication Date: 2018/08/06

Reference Information

CVE: CVE-2018-5156, CVE-2018-5187, CVE-2018-5188, CVE-2018-12359, CVE-2018-12360, CVE-2018-12361, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12367, CVE-2018-12368, CVE-2018-12371

BID: 104555, 104556, 104558, 104560, 104561