Attackers could attack Firefox, Firefox ESR, and Thunderbird in certain situations and, in the worst case, execute malicious code. If that works, there is a high probability that they can completely compromise the systems.
With both web browsers, there may be issues with parsing (CVE-2022-40960″tall“) come from non-UTF8 URLs. In an attack scenario not described in detail, malicious code could reach systems (CVE-2022-40962 “tall“).
Victims respond to a doctored HTML email with a
simple html either
plain text they are not affected by the gap.
in the versions Firefox 105, Firefox ESR 102.3 Y Thunderbird 91.13.1 and of Thunderbird 102.2.1 the developers have closed the vulnerabilities.
More information about the vulnerabilities:
Added more information about breaches.
- Firefox – download quickly and safely from heise.de
- Thunderbird: Download quickly and safely from heise.de
Introvert. Beer guru. Communicator. Travel fanatic. Web advocate. Certified alcohol geek. Tv buff. Subtly charming internet aficionado.
Does Cloud Gaming Have a Bright Future? Google and Microsoft´s Latest Moves
Top Games Inc. Enjoys a Record Start to 2023
6 Benefits of Playing the Bitcoin Dice Game