Vulnerability Description
If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore the injected data. This could have resulted in Thunderbird showing incorrect information, for example the attacker could have tricked Thunderbird to show folders that didn't exist on the IMAP server. This vulnerability affects Thunderbird < 78.12.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Thunderbird | < 78.12 |
Related Weaknesses (CWE)
References
- https://bugzilla.mozilla.org/show_bug.cgi?id=1682370Issue TrackingPermissions RequiredVendor Advisory
- https://security.gentoo.org/glsa/202208-14Third Party Advisory
- https://www.mozilla.org/security/advisories/mfsa2021-30/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1682370Issue TrackingPermissions RequiredVendor Advisory
- https://security.gentoo.org/glsa/202208-14Third Party Advisory
- https://www.mozilla.org/security/advisories/mfsa2021-30/Vendor Advisory
FAQ
What is CVE-2021-29969?
CVE-2021-29969 is a vulnerability with a CVSS score of 5.9 (MEDIUM). If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore t...
How severe is CVE-2021-29969?
CVE-2021-29969 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-29969?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Thunderbird.