CVE-2008-5430

Mozilla Thunderbird 2.0.14 - Denial of Service via Large MIME Email Message

Title source: llm
STIX 2.1

Description

Mozilla Thunderbird 2.0.14 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which might allow remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32869
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/499038/100/0/threaded
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/499045/100/0/threaded

Scores

EPSS 0.0101
EPSS Percentile 59.3%

Details

CWE
CWE-399
Status published
Products (1)
mozilla/thunderbird 2.0.0.14
Published Dec 13, 2008
Tracked Since Feb 18, 2026