Attackers could remotely execute code on compromised systems
vnunet.com, 28 Feb 2008
Users are being urged to update their copies of Mozilla's Thunderbird and SeaMonkey email applications after the disclosure of a serious security flaw.
The advisory warns of a 'critical' flaw in the two applications which could allow an attacker to remotely execute code on compromised systems.
Mozilla said that the vulnerability lies in the way Thunderbird handles Mime content in email messages.
By sending a specially crafted message, an attacker could trigger a buffer overflow error which would leave the user vulnerable to the remote installation and launch of malware.
Discovery of the flaw was credited to a security researcher using the name 'regenrecht', who reported the vulnerability in January via iDefense.
The vulnerability is patched in Thunderbird 2.0.0.12 and SeaMonkey 1.1.8. The US Computer Emergency Response Team recommended that users update to the latest versions of both applications.
Users can also patch the flaw by changing the application's 'mailnews.display.disallow_mime_handlers' property to any value greater than three.
News of the vulnerability comes just one week after Mozilla spun off Thunderbird into a subsidiary company known as Mozilla Messaging.
Experts only, warns Mozilla
Prizes for best third-party tools
Remote access - Three steps to getting connected
3.4 million UK professionals now work from home – is your company equipped?
Cost benefits of a global collaboration network
This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications
Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.
Intel explains how its Xeon processors can handle data-intensive apps
Thomas speaks out on government databases and data privacy
Do you agree?
Have your say on this article