Showing 1 - 8 of 8

CVE-2020-26970

Status Candidate

Overview

When reading SMTP server status codes, Thunderbird writes an integer value to a position on the stack that is intended to contain just one byte. Depending on processor architecture and stack layout, this leads to stack corruption that may be exploitable. This vulnerability affects Thunderbird < 78.5.1.

Related Files

Ubuntu Security Notice USN-4701-1: Posted Jan 20, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4701-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass the CSS sanitizer, or execute arbitrary code. It was discovered that the proxy.onRequest API did not catch view-source URLs. If a user were tricked in to installing an extension with the proxy permission and opening View Source, an attacker could potentially exploit this to obtain sensitive information. Various other issues were also addressed.; tags | advisory, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2020-16042, CVE-2020-26970, CVE-2020-26973, CVE-2020-26974, CVE-2020-35111, CVE-2020-35113; SHA-256 | 1074e9c60b4f3aa25817c65900473466ad1d61de91ee2b39415cd68b2b3d141a; Download | Favorite | View

Debian Security Advisory 4802-1: Posted Dec 28, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4802-1 - Chiaki Ishikawa discovered a stack overflow in SMTP server status handling which could potentially result in the execution of arbitrary code.; tags | advisory, overflow, arbitrary; systems | linux, debian; advisories | CVE-2020-26970; SHA-256 | 8d5444b9b43c99430450d6298b4adc1770bb19a59fcce6879c1c7a73f432c355; Download | Favorite | View

Red Hat Security Advisory 2020-5645-01: Posted Dec 21, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5645-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.6.0. Issues addressed include buffer overflow and use-after-free vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2020-16042, CVE-2020-26970, CVE-2020-26971, CVE-2020-26973, CVE-2020-26974, CVE-2020-26978, CVE-2020-35111, CVE-2020-35113; SHA-256 | c3b8d96edc20367b29b6f1567947889144e9e30c79eeaebacc093d90b4c06f30; Download | Favorite | View

Red Hat Security Advisory 2020-5644-01: Posted Dec 21, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5644-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.6.0. Issues addressed include buffer overflow and use-after-free vulnerabilities.; tags | advisory, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2020-16042, CVE-2020-26970, CVE-2020-26971, CVE-2020-26973, CVE-2020-26974, CVE-2020-26978, CVE-2020-35111, CVE-2020-35113; SHA-256 | 9d6b9ce88303489777415c0698630da4a4b24f0c0dea446783c5dfab50281584; Download | Favorite | View

Red Hat Security Advisory 2020-5400-01: Posted Dec 14, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5400-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-26970; SHA-256 | cfac5064847628ca5f7033c593c040886242a6b6785eb27a7cb7feb387005279; Download | Favorite | View

Red Hat Security Advisory 2020-5399-01: Posted Dec 14, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5399-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-26970; SHA-256 | c34e8e04f3e314513c74bdc43e2e8a88b95349fcc693072715fea384cbd8c6d5; Download | Favorite | View

Red Hat Security Advisory 2020-5398-01: Posted Dec 14, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-5398-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-26970; SHA-256 | d5835cf764040458abe7c0e3ab54e7444779062315e17e487b8a6eb4eef2825b; Download | Favorite | View

Gentoo Linux Security Advisory 202012-04: Posted Dec 7, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202012-4 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 78.5.1 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2020-15999, CVE-2020-16012, CVE-2020-26951, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968, CVE-2020-26970; SHA-256 | ab9e7a2e76c996df0e3907c1b46c919a8930419ea081e83116964f27249ecc34; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 229 files
Ubuntu 84 files
Gentoo 24 files
Debian 20 files
Google Security Research 17 files
Mirabbas Agalarov 16 files
CraCkEr 12 files
Ivan Fratric 8 files
Ahmet Umit Bayram 7 files
nu11secur1ty 7 files

File Archives

Systems

AIX (428)
Apple (1,970)
BSD (373)
CentOS (57)
Cisco (1,920)
Debian (6,748)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,312)
HPUX (879)
iOS (342)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,734)
Mac OS X (685)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (13,304)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,605)
UNIX (9,232)
UnixWare (186)
Windows (6,555)
Other

CVE-2020-26970

Overview

Related Files

File Archive:

May 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems