CVE-2023-6861 | Mozilla Thunderbird up to 115.5 Headless Mode nsWindow::PickerOpen heap-based overflow

CVE-2023-6861 | Mozilla Thunderbird up to 115.5 Headless Mode nsWindow::PickerOpen heap-based overflow

A vulnerability classified as critical has been found in Mozilla Thunderbird up to 115.5. Affected is the function nsWindow::PickerOpen of the component Headless Mode. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2023-6861. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.