27 January 2017
Protect yourself against future threats.
Enhance your knowledge with our exceptional one day training offerings for individuals and organisations
Subscribe for updates.
-----BEGIN PGP SIGNED MESSAGE-----
AUSCERT Security Bulletin
Multiple vulnerabilities have been identified in Mozilla
prior to version 45.7
27 January 2017
AusCERT Security Bulletin Summary
Product: Mozilla Thunderbird
Operating System: Windows
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Increased Privileges -- Remote with User Interaction
Denial of Service -- Remote with User Interaction
Provide Misleading Information -- Remote with User Interaction
Reduced Security -- Remote with User Interaction
CVE Names: CVE-2017-5396 CVE-2017-5390 CVE-2017-5383
CVE-2017-5380 CVE-2017-5378 CVE-2017-5376
Member content until: Sunday, February 26 2017
Multiple vulnerabilities have been identified in Mozilla Thunderbird
prior to version 45.7. 
The vendor has provided the following information regarding these
"#CVE-2017-5375: Excessive JIT code allocation allows bypass of ASLR
JIT code allocation can allow for a bypass of ASLR and DEP
protections leading to potential memory corruption attacks.
#CVE-2017-5376: Use-after-free in XSL
Use-after-free while manipulating XSL in XSLT documents
allows for pointer leaks because an objectÃ¢Â€Â™s address can be
discovered through hash codes, and also allows for data leakage of
an objectÃ¢Â€Â™s content using these hash codes.
#CVE-2017-5380: Potential use-after-free during DOM manipulations
A potential use-after-free found through fuzzing during DOM
manipulation of SVG content.
#CVE-2017-5390: Insecure communication methods in Developer Tools
The JSON viewer in the Developer Tools uses insecure methods to
create a communication channel for copying and viewing JSON or HTTP
headers data, allowing for potential privilege escalation.
#CVE-2017-5396: Use-after-free with Media Decoder
A use-after-free vulnerability in the Media Decoder when working
with media files when some events are fired after the media elements
are freed from memory.
#CVE-2017-5383: Location bar spoofing with unicode characters
URLs containing certain unicode glyphs for alternative hyphens and
quotes do not properly trigger punycode display, allowing for domain
name spoofing attacks in the location bar.
#CVE-2017-5373: Memory safety bugs fixed in Thunderbird 45.7
Mozilla developers and community members Christian Holler, Gary
Kwong, AndrÃƒÂ© Bargull, Jan de Mooij, Tom Schuster, and Oriol reported
memory safety bugs present in Thunderbird 45.6. Some of these bugs
showed evidence of memory corruption and we presume that with enough
effort that some of these could be exploited to run arbitrary code."
The vendor recommends updating to the latest version. 
 Mozilla Foundation Security Advisory 2017-03
AusCERT has made every effort to ensure that the information contained
in this document is accurate. However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.
Australian Computer Emergency Response Team
The University of Queensland
Internet Email: email@example.com
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----