National Vulnerability Database (NVD) National Vulnerability Database (CVE-2008-4070)

National Cyber Awareness System

Vulnerability Summary for CVE-2008-4070

Original release date:09/27/2008

Last revised:10/30/2012

Source: US-CERT/NIST

Overview

Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long header in a news article, related to "canceling [a] newsgroup message" and "cancelled newsgroup messages."

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:10.0 (HIGH) (AV:N/AC:L/Au:N/C:C/I:C/A:C) (legend)

Impact Subscore: 10.0

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: BID

Name: 31411

Type: Patch Information

Hyperlink:http://www.securityfocus.com/bid/31411

External Source: CONFIRM

Name: http://www.mozilla.org/security/announce/2008/mfsa2008-46.html

Type: Patch Information

Hyperlink:http://www.mozilla.org/security/announce/2008/mfsa2008-46.html

External Source: CONFIRM

Name: https://bugzilla.mozilla.org/show_bug.cgi?id=425152

Hyperlink:https://bugzilla.mozilla.org/show_bug.cgi?id=425152

External Source: XF

Name: mozilla-newsgroupmessage-bo(45426)

Hyperlink:http://xforce.iss.net/xforce/xfdb/45426

External Source: VUPEN

Name: ADV-2009-0977

Hyperlink:http://www.vupen.com/english/advisories/2009/0977

External Source: UBUNTU

Name: USN-647-1

Hyperlink:http://www.ubuntu.com/usn/usn-647-1

External Source: SECTRACK

Name: 1020948

Hyperlink:http://www.securitytracker.com/id?1020948

External Source: REDHAT

Name: RHSA-2008:0908

Hyperlink:http://www.redhat.com/support/errata/RHSA-2008-0908.html

External Source: MANDRIVA

Name: MDVSA-2008:206

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2008:206

External Source: DEBIAN

Name: DSA-1697

Hyperlink:http://www.debian.org/security/2009/dsa-1697

External Source: DEBIAN

Name: DSA-1696

Hyperlink:http://www.debian.org/security/2009/dsa-1696

External Source: SUNALERT

Name: 256408

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1

External Source: SLACKWARE

Name: SSA:2008-270-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.412123

External Source: SLACKWARE

Name: SSA:2008-269-02

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.379422

External Source: SECUNIA

Name: 34501

Hyperlink:http://secunia.com/advisories/34501

External Source: SECUNIA

Name: 33434

Hyperlink:http://secunia.com/advisories/33434

External Source: SECUNIA

Name: 33433

Hyperlink:http://secunia.com/advisories/33433

External Source: SECUNIA

Name: 32196

Hyperlink:http://secunia.com/advisories/32196

External Source: SECUNIA

Name: 32092

Hyperlink:http://secunia.com/advisories/32092

External Source: SECUNIA

Name: 32082

Hyperlink:http://secunia.com/advisories/32082

External Source: SECUNIA

Name: 32044

Hyperlink:http://secunia.com/advisories/32044

External Source: SECUNIA

Name: 32025

Hyperlink:http://secunia.com/advisories/32025

External Source: SECUNIA

Name: 32010

Hyperlink:http://secunia.com/advisories/32010

External Source: OVAL

Name: oval:org.mitre.oval:def:10933

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10933

External Source: SUSE

Name: SUSE-SA:2008:050

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00005.html

References to Check Content

Identifier:oval:org.mitre.oval:def:10933

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10933

Vulnerable software and versions

Configuration 1

* cpe:/a:mozilla:thunderbird:2.0.0.1

* cpe:/a:mozilla:thunderbird:2.0.0.0

* cpe:/a:mozilla:thunderbird:2.0.0.3

* cpe:/a:mozilla:thunderbird:2.0.0.2

* cpe:/a:mozilla:thunderbird:1.5.0.9

* cpe:/a:mozilla:thunderbird:1.5.0.8

* cpe:/a:mozilla:thunderbird:1.5.2

* cpe:/a:mozilla:thunderbird:1.5.1

* cpe:/a:mozilla:thunderbird:2.0.0.12

* cpe:/a:mozilla:thunderbird:2.0.0.4

* cpe:/a:mozilla:thunderbird:1.0.6

* cpe:/a:mozilla:thunderbird:1.0.7

* cpe:/a:mozilla:thunderbird:1.0.8

* cpe:/a:mozilla:thunderbird:1.5

* cpe:/a:mozilla:thunderbird:1.0.2

* cpe:/a:mozilla:thunderbird:1.0.3

* cpe:/a:mozilla:thunderbird:1.0.4

* cpe:/a:mozilla:thunderbird:2.0.0.11

* cpe:/a:mozilla:thunderbird:1.0.5

* cpe:/a:mozilla:thunderbird:1.5.0.3

* cpe:/a:mozilla:thunderbird:1.5.0.4

* cpe:/a:mozilla:thunderbird:1.5.0.6

* cpe:/a:mozilla:thunderbird:1.5.0.7

* cpe:/a:mozilla:thunderbird:1.5.0.1

* cpe:/a:mozilla:thunderbird:1.5.0.10

* cpe:/a:mozilla:thunderbird:1.5.0.11

* cpe:/a:mozilla:thunderbird:1.5.0.2

* cpe:/a:mozilla:thunderbird:1.0.5:beta

* cpe:/a:mozilla:thunderbird:2.0.0.15

* cpe:/a:mozilla:thunderbird:2.0.0.14

* cpe:/a:mozilla:thunderbird:2.0.0.13

* cpe:/a:mozilla:thunderbird:1.7.1

* cpe:/a:mozilla:thunderbird:1.7.3

* cpe:/a:mozilla:thunderbird:0.7.2

* cpe:/a:mozilla:thunderbird:0.7.3

* cpe:/a:mozilla:thunderbird:0.7

* cpe:/a:mozilla:thunderbird:0.7.1

* cpe:/a:mozilla:thunderbird:1.5:beta2

* cpe:/a:mozilla:thunderbird:1.0

* cpe:/a:mozilla:thunderbird:1.0.1

* cpe:/a:mozilla:thunderbird:0.8

* cpe:/a:mozilla:thunderbird:0.9

* cpe:/a:mozilla:thunderbird:0.1

* cpe:/a:mozilla:thunderbird:0.2

* cpe:/a:mozilla:thunderbird:0.5

* cpe:/a:mozilla:thunderbird:0.6

* cpe:/a:mozilla:thunderbird:0.3

* cpe:/a:mozilla:thunderbird:0.4

* cpe:/a:mozilla:thunderbird:2.0.0.16 and previous versions

* cpe:/a:mozilla:thunderbird:2.0.0.5

* cpe:/a:mozilla:thunderbird:2.0.0.6

* cpe:/a:mozilla:thunderbird:2.0.0.9

* cpe:/a:mozilla:thunderbird:2.0.0.7

* cpe:/a:mozilla:seamonkey:1.1.1

* cpe:/a:mozilla:seamonkey:1.1.10

* cpe:/a:mozilla:seamonkey:1.0:beta

* cpe:/a:mozilla:seamonkey:1.0::alpha

* cpe:/a:mozilla:seamonkey:1.0::dev

* cpe:/a:mozilla:seamonkey:1.0.9

* cpe:/a:mozilla:seamonkey:1.0.8

* cpe:/a:mozilla:seamonkey:1.0.7

* cpe:/a:mozilla:seamonkey:1.0.6

* cpe:/a:mozilla:seamonkey:1.1.2

* cpe:/a:mozilla:seamonkey:1.1

* cpe:/a:mozilla:seamonkey:1.0.1

* cpe:/a:mozilla:seamonkey:1.0

* cpe:/a:mozilla:seamonkey:1.0.5

* cpe:/a:mozilla:seamonkey:1.0.4

* cpe:/a:mozilla:seamonkey:1.0.3

* cpe:/a:mozilla:seamonkey:1.0.2

* cpe:/a:mozilla:seamonkey:1.0.99

* cpe:/a:mozilla:seamonkey:1.1.11 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Buffer Errors (CWE-119)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4070