Mozilla thunderbird: Moderate security update

Users of Mozilla Thunderbird please be advised of a Moderate security update that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (

RHSA-2010:0780-01: [RHSA-2010:0780-01] Moderate: thunderbird security update
Product: Red Hat Enterprise Linux

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML mail content.

An HTML mail message containing malicious content could cause Thunderbird

to crash or, potentially, execute arbitrary code with the privileges of the

user running Thunderbird. (CVE-2010-3176, CVE-2010-3180)

Note: JavaScript support is disabled by default in Thunderbird. The above

issues are not exploitable unless JavaScript is enabled.