CVE-2005-0149 - Macular Traces

Description

Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference which could allow remote attackers to bypass the user’s intended privacy and security policy by using cookies in e-mail messages.

Reference

http://www.mozilla.org/security/announce/mfsa2005-11.html https://bugzilla.mozilla.org/show_bug.cgi?id=268107 http://www.redhat.com/support/errata/RHSA-2005-094.html http://www.redhat.com/support/errata/RHSA-2005-323.html http://www.redhat.com/support/errata/RHSA-2005-335.html http://secunia.com/advisories/19823 http://www.securityfocus.com/bid/12407 http://www.novell.com/linux/security/advisories/2006_04_25.html https://exchange.xforce.ibmcloud.com/vulnerabilities/19172 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11407 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100047