CVE-2008-5430

EUVD-2008-5407
Mozilla Thunderbird 2.0.14 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which might allow remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
mozillathunderbird
2.0.0.14
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
thunderbird
dapper
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
ignored
Common Weakness Enumeration
References
http://mime.recurity.com/cgi-bin/twiki/view/Main/AttackIntro
http://www.securityfocus.com/archive/1/499038/100/0/threaded
http://www.securityfocus.com/archive/1/499045/100/0/threaded
http://www.securityfocus.com/bid/32869
http://mime.recurity.com/cgi-bin/twiki/view/Main/AttackIntro
http://www.securityfocus.com/archive/1/499038/100/0/threaded
http://www.securityfocus.com/archive/1/499045/100/0/threaded
http://www.securityfocus.com/bid/32869