Referenced CVEs:
CVE-2009-1303, CVE-2009-1305, CVE-2009-1306, CVE-2009-1307, CVE-2009-1308, CVE-2009-1309, CVE-2009-1392, CVE-2009-1833, CVE-2009-1836, CVE-2009-1838, CVE-2009-1841


Description:
===========================================================Ubuntu Security Notice USN-782-1 June 25, 2009thunderbird vulnerabilitiesCVE-2009-1303, CVE-2009-1305, CVE-2009-1306, CVE-2009-1307,CVE-2009-1308, CVE-2009-1309, CVE-2009-1392, CVE-2009-1833,CVE-2009-1836, CVE-2009-1838, CVE-2009-1841===========================================================A security issue affects the following Ubuntu releases:Ubuntu 8.04 LTSUbuntu 8.10Ubuntu 9.04This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 8.04 LTS: thunderbird 2.0.0.22+build1+nobinonly-0ubuntu0.8.04.1Ubuntu 8.10: thunderbird 2.0.0.22+build1+nobinonly-0ubuntu0.8.10.1Ubuntu 9.04: thunderbird 2.0.0.22+build1+nobinonly-0ubuntu0.9.04.1After a standard system upgrade you need to restart Thunderbird to effectthe necessary changes.Details follow:Several flaws were discovered in the JavaScript engine of Thunderbird. If auser had JavaScript enabled and were tricked into viewing malicious webcontent, a remote attacker could cause a denial of service or possiblyexecute arbitrary code with the privileges of the user invoking theprogram. (CVE-2009-1303, CVE-2009-1305, CVE-2009-1392, CVE-2009-1833,CVE-2009-1838)Several flaws were discovered in the way Thunderbird processed malformedURI schemes. If a user were tricked into viewing a malicious website andhad JavaScript and plugins enabled, a remote attacker could executearbitrary JavaScript or steal private data. (CVE-2009-1306, CVE-2009-1307,CVE-2009-1309)Cefn Hoile discovered Thunderbird did not adequately protect againstembedded third-party stylesheets. If JavaScript were enabled, an attackercould exploit this to perform script injection attacks using XBL bindings.(CVE-2009-1308)Shuo Chen, Ziqing Mao, Yi-Min Wang, and Ming Zhang discovered thatThunderbird did not properly handle error responses when connecting to aproxy server. If a user had JavaScript enabled while using Thunderbird toview websites and a remote attacker were able to perform aman-in-the-middle attack, this flaw could be exploited to view sensitiveinformation. (CVE-2009-1836)It was discovered that Thunderbird could be made to run scripts withelevated privileges. If a user had JavaScript enabled while havingcertain non-default add-ons installed and were tricked into viewing amalicious website, an attacker could cause a chrome privileged object, suchas the browser sidebar, to run arbitrary code via interactions with theattacker controlled website. (CVE-2009-1841)





More...