CVE-2006-0236 - OpenCVE

GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:H/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mozilla	Thunderbird

Configuration 1 [-]

OR	cpe:2.3:a:mozilla:thunderbird:1.0:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.0.1:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.0.2:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.0.5:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.0.6:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.0.7:::::::*
	cpe:2.3:a:mozilla:thunderbird:1.5:beta2::::::

No data.

References

Link	Providers
http://secunia.com/advisories/15907
http://secunia.com/secunia_research/2005-22/advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:021
http://www.securityfocus.com/archive/1/422148/100/0/threaded
http://www.securityfocus.com/bid/16271
http://www.vupen.com/english/advisories/2006/0230
https://bugzilla.mozilla.org/show_bug.cgi?id=300246
https://exchange.xforce.ibmcloud.com/vulnerabilities/24164

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-01-18T01:00:00

Updated: 2024-08-07T16:25:34.070Z

Reserved: 2006-01-18T00:00:00

Link: CVE-2006-0236

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-01-18T01:07:00.000

Modified: 2018-10-19T15:43:27.563

Link: CVE-2006-0236

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "16271", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/16271"}, {"name": "MDKSA-2006:021", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:021"}, {"name": "thunderbird-attachment-ext-spoofing(24164)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24164"}, {"tags": ["x_refsource_MISC"], "url": "http://secunia.com/secunia_research/2005-22/advisory"}, {"name": "20060117 Secunia Research: Mozilla Thunderbird Attachment SpoofingVulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/422148/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=300246"}, {"name": "ADV-2006-0230", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/0230"}, {"name": "15907", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/15907"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-0236", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "16271", "refsource": "BID", "url": "http://www.securityfocus.com/bid/16271"}, {"name": "MDKSA-2006:021", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:021"}, {"name": "thunderbird-attachment-ext-spoofing(24164)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24164"}, {"name": "http://secunia.com/secunia_research/2005-22/advisory", "refsource": "MISC", "url": "http://secunia.com/secunia_research/2005-22/advisory"}, {"name": "20060117 Secunia Research: Mozilla Thunderbird Attachment SpoofingVulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/422148/100/0/threaded"}, {"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=300246", "refsource": "CONFIRM", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=300246"}, {"name": "ADV-2006-0230", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/0230"}, {"name": "15907", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/15907"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:25:34.070Z"}, "title": "CVE Program Container", "references": [{"name": "16271", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/16271"}, {"name": "MDKSA-2006:021", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:021"}, {"name": "thunderbird-attachment-ext-spoofing(24164)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24164"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://secunia.com/secunia_research/2005-22/advisory"}, {"name": "20060117 Secunia Research: Mozilla Thunderbird Attachment SpoofingVulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/422148/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=300246"}, {"name": "ADV-2006-0230", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/0230"}, {"name": "15907", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/15907"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-0236", "datePublished": "2006-01-18T01:00:00", "dateReserved": "2006-01-18T00:00:00", "dateUpdated": "2024-08-07T16:25:34.070Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "055D1044-9FC5-45AA-8407-649E96C5AFE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "7C1C87A5-C14D-4A23-B865-3BB1FCDC8470", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "5C4DB0BB-BFD7-4E7A-B3EF-9C5422602216", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "FFC390CB-774C-47BE-95C3-059943A9E645", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "B71DE7AC-553B-4524-8B33-5605518449EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "72B02389-0DCD-45BC-A09F-CB6B75940616", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:1.5:beta2:*:*:*:*:*:*", "matchCriteriaId": "1A406214-29E5-4E13-B2E1-1CF72F1E60BC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment."}], "id": "CVE-2006-0236", "lastModified": "2018-10-19T15:43:27.563", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2006-01-18T01:07:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/15907"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/secunia_research/2005-22/advisory"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:021"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/422148/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/16271"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/0230"}, {"source": "cve@mitre.org", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=300246"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24164"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "Not vulnerable. We verified that this issue does not affect Linux versions of Thunderbird.", "lastModified": "2006-08-30T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}