Mozilla Thunderbird 24.x < 24.7 Multiple Vulnerabilities (Mac OS X)
Critical Nessus Plugin ID 76760
SynopsisThe remote Mac OS X host contains a mail client that is affected by multiple vulnerabilities.
DescriptionThe version of Thunderbird 24.x installed on the remote host is a version prior to 24.7. It is, therefore, affected by the following vulnerabilities :
- When a pair of NSSCertificate structures are added to a trust domain and then one of them is removed during use, a use-after-free error occurs which may cause the application to crash. This crash is potentially exploitable. (CVE-2014-1544)
- There are multiple memory safety hazards within the browser engine. These hazards may lead to memory corruption vulnerabilities, which may allow attackers to execute arbitrary code. (CVE-2014-1547, CVE-2014-1548)
- Triggering the FireOnStateChange event has the potential to crash the application. This may lead to a use-after-free and an exploitable crash.
- There is a flaw in the Skia library when scaling images of high quality. If the image data is discarded while being processed, the library may crash. This crash is potentially exploitable. (CVE-2014-1557)
SolutionUpgrade to Thunderbird 24.7 or later.