← Back

CVE-2010-0161

nvd nist
Published: Mar 23, 2010Modified: Apr 29, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:N/A:P
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

The nsAuthSSPI::Unwrap function in extensions/auth/nsAuthSSPI.cpp in Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 on Windows Vista, Windows Server 2008 R2, and Windows 7 allows remote SMTP, IMAP, and POP servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via crafted data in a session that uses SSPI.

Affected (88)

Mozilla
2 products
Thunderbird
Seamonkey
Configuration A
55 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Thunderbird
Up to 2.0.0.23
Thunderbird
Version 0.1
Thunderbird
Version 0.2
Thunderbird
Version 0.3
Thunderbird
Version 0.4
Thunderbird
Version 0.5
Thunderbird
Version 0.6
Thunderbird
Version 0.7.1
Thunderbird
Version 0.7.2
Thunderbird
Version 0.7.3
Thunderbird
Version 0.7
Thunderbird
Version 0.8
Thunderbird
Version 0.9
Thunderbird
Version 1.0.1
Thunderbird
Version 1.0.2
Thunderbird
Version 1.0.3
Thunderbird
Version 1.0.4
Thunderbird
Version 1.0.5
Thunderbird
Version 1.0.6
Thunderbird
Version 1.0.7
Thunderbird
Version 1.0.8
Thunderbird
Version 1.0
Thunderbird
Version 1.5.0.10
Thunderbird
Version 1.5.0.11
Thunderbird
Version 1.5.0.12
Thunderbird
Version 1.5.0.13
Thunderbird
Version 1.5.0.14
Thunderbird
Version 1.5.0.1
Thunderbird
Version 1.5.0.2
Thunderbird
Version 1.5.0.3
Thunderbird
Version 1.5.0.4
Thunderbird
Version 1.5.0.5
Thunderbird
Version 1.5.0.6
Thunderbird
Version 1.5.0.7
Thunderbird
Version 1.5.0.8
Thunderbird
Version 1.5.0.9
Thunderbird
Version 1.5.1
Thunderbird
Version 1.5.2
Thunderbird
Version 1.5
Thunderbird
Version 1.5 beta2
Thunderbird
Version 2.0.0.0
Thunderbird
Version 2.0.0.12
Thunderbird
Version 2.0.0.14
Thunderbird
Version 2.0.0.16
Thunderbird
Version 2.0.0.17
Thunderbird
Version 2.0.0.18
Thunderbird
Version 2.0.0.19
Thunderbird
Version 2.0.0.21
Thunderbird
Version 2.0.0.22
Thunderbird
Version 2.0.0.4
Thunderbird
Version 2.0.0.5
Thunderbird
Version 2.0.0.6
Thunderbird
Version 2.0.0.7
Thunderbird
Version 2.0.0.8
Thunderbird
Version 2.0.0.9
Configuration B
33 vulnerable · 3 platform
Vulnerable SoftwareAffected Versions
Mozilla
Seamonkey
Up to 1.1.18
Seamonkey
Version 1.0.1
Seamonkey
Version 1.0.2
Seamonkey
Version 1.0.3
Seamonkey
Version 1.0.4
Seamonkey
Version 1.0.5
Seamonkey
Version 1.0.6
Seamonkey
Version 1.0.7
Seamonkey
Version 1.0.8
Seamonkey
Version 1.0.9
Seamonkey
Version 1.0
Seamonkey
Version 1.0 alpha
Seamonkey
Version 1.0 beta
Seamonkey
Version 1.1.10
Seamonkey
Version 1.1.11
Seamonkey
Version 1.1.12
Seamonkey
Version 1.1.13
Seamonkey
Version 1.1.14
Seamonkey
Version 1.1.15
Seamonkey
Version 1.1.16
Seamonkey
Version 1.1.17
Seamonkey
Version 1.1.1
Seamonkey
Version 1.1.2
Seamonkey
Version 1.1.3
Seamonkey
Version 1.1.4
Seamonkey
Version 1.1.5
Seamonkey
Version 1.1.6
Seamonkey
Version 1.1.7
Seamonkey
Version 1.1.8
Seamonkey
Version 1.1.9
Seamonkey
Version 1.1
Seamonkey
Version 1.1 alpha
Seamonkey
Version 1.1 beta
Running on/withPlatform Versions
Microsoft
Windows 7
All versions
Microsoft
Windows Server 2008
All versions
Microsoft
Windows Vista
All versions

Related CWEs

CWE-399
CWE-399

References (16)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.