Required CVE Record Information
Description
Mozilla Mail 1.7.1 and 1.7.3, and Thunderbird before 0.9, when HTML-Mails is enabled, allows remote attackers to determine valid e-mail addresses via an HTML e-mail that references a Cascading Style Sheets (CSS) document on the attacker's server.
References 4 Total
- osvdb.org: 11394 vdb-entry
- exchange.xforce.ibmcloud.com: mozilla-css-obtain-emails(17949) vdb-entry
- archives.neohapsis.com: 20041102 CSS in E-Mails possible E-Mail-Validity Check for Spammers? mailing-list
- secunia.com: 13086 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- osvdb.org: 11394 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: mozilla-css-obtain-emails(17949) vdb-entryx_transferred
- archives.neohapsis.com: 20041102 CSS in E-Mails possible E-Mail-Validity Check for Spammers? mailing-listx_transferred
- secunia.com: 13086 third-party-advisoryx_transferred