漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Denial-of-service via malicious LDAP address-book server
Vulnerability Description
A malicious LDAP server, which a Thunderbird user is configured to query for address-book autocomplete, can stash arbitrarily large amounts of attacker-supplied data into the Thunderbird LDAP client until it crashes due to memory exhaustion. This vulnerability was fixed in Thunderbird 152.0.1 and Thunderbird 140.12.1.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Thunderbird 资源管理错误漏洞
Vulnerability Description
Mozilla thunderbird是Mozilla基金会开源的一款跨平台电子邮件和新闻客户端。 Mozilla Thunderbird 140.12.1之前版本和152.0.1之前版本存在资源管理错误漏洞,该漏洞源于LDAP客户端存储恶意LDAP服务器提供的数据时,可能存储大量数据直到内存耗尽导致崩溃。
CVSS Information
N/A
Vulnerability Type
N/A