CVE-2018-5170 log

Severity Medium
Remote Yes
Type Content spoofing
It is possible in Thunderbird before 52.8 to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected.
Group Package Affected Fixed Severity Status Ticket
AVG-707 thunderbird 52.7.0-2 52.8.0-1 Critical Fixed
Date Advisory Group Package Severity Type
21 May 2018 ASA-201805-21 AVG-707 thunderbird Critical multiple issues