USN-5168-2: Thunderbird vulnerability
Tavis Ormandy discovered that NSS, included with Thunderbird, incorrectly
handled verifying DSA/RSA-PSS signatures. A remote attacker could use this
issue to cause Thunderbird to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Source: USN-5168-2: Thunderbird vulnerability
Leave a Reply