Cookie Bypass Vulnerability in Thunderbird and Mozilla

Cookie Bypass Vulnerability in Thunderbird and Mozilla

CVE-2005-0149 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers to bypass the user's intended privacy and security policy by using cookies in e-mail messages.

Learn more about our Network Penetration Testing.