Mozilla Thunderbird < 6.0.2 Untrusted CA
Medium Nessus Plugin ID 56122
SynopsisThe remote Windows host contains a mail client that contains support for an untrustworthy certificate authority.
DescriptionThe installed version of Thunderbird is earlier than 6.0.2. Due to a recent attack against certificate authority DigiNotar, Mozilla has added explicit distrust to the DigiNotar root certificate and several intermediates in this version of Thunderbird.
Note this is a further fix to MFSA 2011-34, which removed the DigiNotar root certificate.
SolutionUpgrade to Thunderbird 6.0.2 or later.