Mozilla Thunderbird < 220.127.116.11 Multiple Vulnerabilities
High Nessus Plugin ID 31193
The remote Windows host contains a mail client that is affected by multiple vulnerabilities.
The installed version of Thunderbird is affected by various security issues : - Several stability bugs exist leading to crashes which, in some cases, show traces of memory corruption. - Several issues exist that allow scripts from page content to escape from their sandboxed context and/or run with chrome privileges, resulting in privilege escalation, cross-site scripting, and/or remote code execution. - A directory traversal vulnerability exist via the 'chrome:' URI. - A heap-based buffer overflow exists that can be triggered when viewing an email with an external MIME body. - Multiple cross-site scripting vulnerabilities exist related to character encoding.