CVE-2018-5170: Input Validation
First published: Fri May 18 2018(Updated: )
It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected.
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Enterprise Linux Desktop | =6.0 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =6.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Server Aus | =7.6 | |
| Redhat Enterprise Linux Server Eus | =7.5 | |
| Redhat Enterprise Linux Server Eus | =7.6 | |
| Redhat Enterprise Linux Server Tus | =7.6 | |
| Redhat Enterprise Linux Workstation | =6.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Mozilla Thunderbird | <52.8.0 | |
| Mozilla Thunderbird Esr | <52.8.0 | |
| Debian Debian Linux | =7.0 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =17.10 | |
| Canonical Ubuntu Linux | =18.04 | |
| Mozilla Thunderbird | <52.8 | 52.8 |
| redhat/thunderbird | <52.8 | 52.8 |
| debian/thunderbird | 1:115.12.0-1~deb11u1 1:115.16.0esr-1~deb11u1 1:115.12.0-1~deb12u1 1:115.16.0esr-1~deb12u1 1:128.2.0esr-1 1:128.3.0esr-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securitytracker.com/id/1040946
- https://access.redhat.com/errata/RHSA-2018:1725
- https://access.redhat.com/errata/RHSA-2018:1726
- https://bugzilla.mozilla.org/show_bug.cgi?id=1411732
- https://lists.debian.org/debian-lts-announce/2018/05/msg00013.html
- https://security.gentoo.org/glsa/201811-13
- https://usn.ubuntu.com/3660-1/
- https://www.debian.org/security/2018/dsa-4209
- https://www.mozilla.org/security/advisories/mfsa2018-13/
- https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/
- https://launchpad.net/bugs/cve/CVE-2018-5170
- https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5183
- https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5170
- https://bugzilla.redhat.com/show_bug.cgi?id=1580240
- https://security-tracker.debian.org/tracker/CVE-2018-5170
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5170
- https://nvd.nist.gov/vuln/detail/CVE-2018-5170
- https://ubuntu.com/security/CVE-2018-5170
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2018-5170?
CVE-2018-5170 is a vulnerability that allows spoofing the filename of an attachment and displaying an arbitrary attachment name, potentially leading to a user opening a remote attachment that is a different file type than expected.
Which software versions are affected by CVE-2018-5170?
CVE-2018-5170 affects Thunderbird ESR versions earlier than 52.8 and Thunderbird versions earlier than 52.8.
How can the CVE-2018-5170 vulnerability be exploited?
The CVE-2018-5170 vulnerability can be exploited by spoofing the filename of an attachment and tricking the user into opening it, which may lead to the execution of malicious code or revealing sensitive information.
What is the severity of CVE-2018-5170?
CVE-2018-5170 has a severity rating of medium with a CVSS score of 4.0.
How can I fix the CVE-2018-5170 vulnerability?
To fix the CVE-2018-5170 vulnerability, it is recommended to update Thunderbird to version 52.8 or higher.
- collector/nvd-index
- collector/mozilla-advisory
- vendor/mozilla
- vendor/thunderbird
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- source/Mozilla
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- collector/nvd-cve
- source/NVD
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-5170
- agent/description
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/tags
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/7.6
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/7.5
- version/redhat enterprise linux server eus/7.6
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/7.6
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0
- version/redhat enterprise linux workstation/7.0
- canonical/mozilla thunderbird
- canonical/mozilla thunderbird esr
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/7.0
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/17.10
- version/canonical ubuntu linux/18.04
- package-manager/redhat
- package-manager/debian