SB2018010812 - Red Hat update for thunderbird

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Spoofing attack (CVE-ID: CVE-2017-7829)

The vulnerability allows a remote attacker to spoof browser address bar.

The vulnerability exists due to encoded null character is cut off in message header display. A remote attacker can spoof the sender's email address and display an arbitrary sender address to the email recipient.

2) Cross-site scripting (CVE-ID: CVE-2017-7846)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

3) Memory leak (CVE-ID: CVE-2017-7847)

The disclosed vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The vulnerability exists due to leak of local path string from specially crafted CSS and RSS feed. A remote attacker can reveal local path strings, which may contain user name.

4) Spoofing attack (CVE-ID: CVE-2017-7848)

The disclosed vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to insufficient input validation of user-supplied values in HTTP parameters. A remote attacker can inject new lines into the created email structure via specially crafted RSS fields and modify the message body.

Remediation

Install update from vendor's website.

References

• https://access.redhat.com/errata/RHSA-2018:0061