Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Thunderbird文件附件欺骗漏洞
Vulnerability Description
Mozilla Thunderbird 1.0.2、1.0.6和1.0.7中的GUI显示截断漏洞,可让需要用户协助的攻击者使用文件名中包含大量空格并以Thunderbird未显示的危险扩展名结尾的附件,以及可用来欺骗用户通过拖动或保存附件下载危险内容的不一致Content-Type(内容类型)头来执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A