CVE-2008-5430Mozilla Thunderbird vulnerability

2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.6%
top 31.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mozilla Thunderbird
Timeline
PublishedDec 13
Latest updateMay 14

Description

Mozilla Thunderbird 2.0.14 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which might allow remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDmozilla/thunderbird2.0.0.14

🔴Vulnerability Details

1
GHSA
GHSA-5j5r-p4gq-qg52: Mozilla Thunderbird 22022-05-14