Mozilla Mail 1.7.1 and 1.7.3, and Thunderbird prior to 0.9, when HTML-Mails is enabled, allows remote malicious users to determine valid e-mail addresses via an HTML e-mail that references a Cascading Style Sheets (CSS) document on the attacker's server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla thunderbird 0.8 |
||
mozilla thunderbird 1.7.1 |
||
mozilla thunderbird 1.7.3 |