VDB
CVE-2010-0163
CVE-2010-0163
PUBLISHED
CVSS 4.300000190734863 MEDIUM
Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 process e-mail attachments with a parser that performs casts and line termination incorrectly, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted message, related to message indexing.
EPSS 5.44% · 90.3th percentile
Risk Scores
CVSS v2.0
4.300000190734863
EPSS Score
5.44%
90.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mozilla | seamonkey | 1.1.16, 1.1.8, 1.1.5 |
| n/a | n/a | * |
| mozilla | thunderbird | 2.0.0.3, 2.0.0.4, 2.0.0.5 |
Exploit Intelligence
- 39001 (circl)
- ADV-2010-0648 (circl)
- oval:org.mitre.oval:def:14259 (circl)
- RHSA-2010:0499 (circl)
- https://bugzilla.mozilla.org/show_bug.cgi?id=505221 (circl)
- ADV-2010-1556 (circl)
- SUSE-SR:2010:013 (circl)
- 38977 (circl)
- thunderbird-messages-dos(56993) (circl)
- 38831 (circl)
…and 3 more exploits
Timeline
- Mar 22, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- 39001 third-party-advisory
- ADV-2010-0648 vdb
- oval:org.mitre.oval:def:14259 vdb
- RHSA-2010:0499 vendor-advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=505221 url
- ADV-2010-1556 vdb
- SUSE-SR:2010:013 vendor-advisory
- 38977 third-party-advisory
- thunderbird-messages-dos(56993) vdb
- 38831 vdb
- USN-915-1 vendor-advisory
- oval:org.mitre.oval:def:10805 vdb
- http://www.mozilla.org/security/announce/2010/mfsa2010-07.html url
- https://nvd.nist.gov/vuln/detail/CVE-2010-0163 advisory