Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-29964

Опубликовано: 24 июн. 2021
Источник: debian

Описание

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.11, Firefox < 89, and Firefox ESR < 78.11.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firefox-esrnot-affectedpackage
firefoxnot-affectedpackage
thunderbirdnot-affectedpackage

Примечания

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-26/#CVE-2021-29964

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-24/#CVE-2021-29964

  • https://www.mozilla.org/en-US/security/advisories/mfsa2021-23/#CVE-2021-29964

Связанные уязвимости

ubuntu логотип

CVE-2021-29964

CVSS3: 7.1
ubuntu
больше 4 лет назад

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.11, Firefox < 89, and Firefox ESR < 78.11.

redhat логотип

CVE-2021-29964

CVSS3: 7.1
redhat
больше 4 лет назад

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.11, Firefox < 89, and Firefox ESR < 78.11.

nvd логотип

CVE-2021-29964

CVSS3: 7.1
nvd
больше 4 лет назад

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.11, Firefox < 89, and Firefox ESR < 78.11.

github логотип

GHSA-6mgf-v5gc-vgc7

github
больше 3 лет назад

A locally-installed hostile program could send `WM_COPYDATA` messages that Firefox would process incorrectly, leading to an out-of-bounds read. *This bug only affects Firefox on Windows. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.11, Firefox < 89, and Firefox ESR < 78.11.

fstec логотип

BDU:2021-02898

CVSS3: 2.5
fstec
больше 4 лет назад

Уязвимость почтового клиента Mozilla Thunderbird, связанная с чтением за границами буфера в памяти, позволяющая нарушителю получить доступ к конфиденциальной информации