Medium severity5.3NVD Advisory· Published Jun 11, 2018· Updated Jun 17, 2026
CVE-2017-7829
CVE-2017-7829
Description
It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the display string. This vulnerability affects Thunderbird < 52.5.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweedpkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Package%20Hub%2012
< 91.1.1-1.1+ 1 more
- (no CPE)range: < 91.1.1-1.1
- (no CPE)range: < 52.5.2-51.1
- Range: unspecified
Patches
Vulnerability mechanics
References
8- bugzilla.mozilla.org/show_bug.cginvdExploitIssue TrackingPatch
- www.securityfocus.com/bid/102258nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040123nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2018:0061nvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2017/12/msg00026.htmlnvdMailing ListThird Party Advisory
- usn.ubuntu.com/3529-1/nvdThird Party Advisory
- www.debian.org/security/2017/dsa-4075nvdThird Party Advisory
- www.mozilla.org/security/advisories/mfsa2017-30/nvdVendor Advisory
News mentions
0No linked articles in our index yet.