Denial-of-Service (DOS) Vulnerability in Thunderbird < 60.5

Denial-of-Service (DOS) Vulnerability in Thunderbird < 60.5

CVE-2018-18513 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

A crash can occur when processing a crafted S/MIME message or an XPI package containing a crafted signature. This can be used as a denial-of-service (DOS) attack because Thunderbird reopens the last seen message on restart, triggering the crash again. This vulnerability affects Thunderbird < 60.5.

Learn more about our Web Application Penetration Testing UK.