CVE-2006-1045
published 2006-03-07CVE-2006-1045: The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external…
PriorityP416low2.6CVSS 2.0
AVNACHAuNCPINAN
EXPLOIT
EPSS
4.86%
90.9th percentile
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 1.5.dfsg+1.5.0.2-1 (sid) | firefox 1.5.dfsg+1.5.0.2-1 (sid) |
| debian | thunderbird | < firefox 1.5.dfsg+1.5.0.2-1 (sid) | firefox 1.5.dfsg+1.5.0.2-1 (sid) |
| mozilla | thunderbird | — | — |
| mozilla | thunderbird | >= 0 < 1.5.0.2-1 | 1.5.0.2-1 |
| mozilla | thunderbird | >= 0 < 1.5.0.2-1 | 1.5.0.2-1 |
| mozilla | thunderbird | >= 0 < 1.5.0.2-1 | 1.5.0.2-1 |
| mozilla | thunderbird | >= 0 < 1.5.0.2-1 | 1.5.0.2-1 |
CVSS provenance
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:P/I:N/A:N
osv2.6LOW
vendor_ubuntu7.5HIGH
vendor_debian2.6LOW
vendor_redhat2.6LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2006-05-03·CVSS 7.5
CVE-2006-1742 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Thunderbird vulnerabilities
Igor Bukanov discovered that the JavaScript engine did not properly
declare some temporary variables. Under some rare circumstances, a
malicious mail with embedded JavaScript could exploit this to execute
arbitrary code with the privileges of the user. (CVE-2006-0292,
CVE-2006-1742)
The function XULDocument.persist() did not sufficiently validate the
names of attributes. An attacker could exploit this to inject
arbitrary XML code into the file 'localstore.rdf', which is read and
evaluated at startup. This could include JavaScript commands that
would be run with the user's privileges. (CVE-2006-0296)
Due to a flaw in the HTML tag parser a specific sequence of HTML tags
caused memory corruption. A malicious HTML emai
Red Hat
security flaw
vendor_redhat·2006-02-28·CVSS 2.6
CVE-2006-1045 [LOW] security flaw
security flaw
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Debian
CVE-2006-1045: firefox - The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of rem...
vendor_debian·2006·CVSS 2.6
CVE-2006-1045 [LOW] CVE-2006-1045: firefox - The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of rem...
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.2-1)
GHSA
GHSA-6m5g-mwm7-wq36: The HTML rendering engine in Mozilla Thunderbird 1
ghsa_unreviewed·2022-05-01
CVE-2006-1045 [LOW] GHSA-6m5g-mwm7-wq36: The HTML rendering engine in Mozilla Thunderbird 1
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
OSV
CVE-2006-1045: The HTML rendering engine in Mozilla Thunderbird 1
osv·2006-03-07·CVSS 2.6
CVE-2006-1045 [LOW] CVE-2006-1045: The HTML rendering engine in Mozilla Thunderbird 1
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
No detection rules found.
Bugzilla
CVE-2006-1045 security flaw
bugzilla·2018-08-16·CVSS 2.6
CVE-2006-1045 [LOW] CVE-2006-1045 security flaw
CVE-2006-1045 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Bugzilla
Mozilla Thunderbird multiple vulnerabilities (CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-0292, et al.)
bugzilla·2006-04-22·CVSS 7.5
CVE-2006-0749 [HIGH] Mozilla Thunderbird multiple vulnerabilities (CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-0292, et al.)
Mozilla Thunderbird multiple vulnerabilities (CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-0292, et al.)
Mozilla has released a new version of Mozilla Thunderbird that corrects
serious and critical vulnerabilities in that product. Red Hat has issued
advisory RHSA-2006:0330-01 .
With that advisory, Red Hat has released thunderbird-1.0.8-1.4.1.
Here is the Problem Description from that advisory:
"Several bugs were found in the way Thunderbird processes malformed
javascript. A malicious HTML mail message could modify the content of a
different open HTML mail message, possibly stealing sensitive information
or conducting a cross-site scripting attack. Please note that JavaScript
support is disabled by default in Thunderbird. (CVE-2006-1731,
CVE-2006-1732, CVE-2006-1741)
"Several b
Bugzilla
CVE-2006-1045 Mail Multiple Information Disclosure
bugzilla·2006-04-13·CVSS 2.6
CVE-2006-1045 [LOW] CVE-2006-1045 Mail Multiple Information Disclosure
CVE-2006-1045 Mail Multiple Information Disclosure
Mail Multiple Information Disclosure
As a privacy measure to prevent senders (primarily spammers) from tracking
when e-mail is read Thunderbird does not load remote content referenced from
an HTML mail message until a user tells it to do so. This normally includes
the content of frames and CSS files, but CrashFr showed it was possible to
bypass this restriction through indirection: the direct CSS or iframe src is
included in-line, with that including remote content.
Workaround
Switch the "view message body as..." choice to "Simple HTML" or "Plain
text". Or for POP mail, after downloading the mail switch to offline mode
before reading any of it.
References
[1]https://bugzilla.mozilla.org/show_bug.cgi?id=328917
Discussion:
Lifting e
Bugzilla
CVE-2006-1045 Mail Multiple Information Disclosure
bugzilla·2006-04-13·CVSS 2.6
CVE-2006-1045 [LOW] CVE-2006-1045 Mail Multiple Information Disclosure
CVE-2006-1045 Mail Multiple Information Disclosure
Mail Multiple Information Disclosure
As a privacy measure to prevent senders (primarily spammers) from tracking
when e-mail is read Thunderbird does not load remote content referenced from
an HTML mail message until a user tells it to do so. This normally includes
the content of frames and CSS files, but CrashFr showed it was possible to
bypass this restriction through indirection: the direct CSS or iframe src is
included in-line, with that including remote content.
Workaround
Switch the "view message body as..." choice to "Simple HTML" or "Plain
text". Or for POP mail, after downloading the mail switch to offline mode
before reading any of it.
References
[1]https://bugzilla.mozilla.org/show_bug.cgi?id=328917
This issue also affec
http://secunia.com/advisories/19821http://secunia.com/advisories/19823http://secunia.com/advisories/19863http://secunia.com/advisories/19902http://secunia.com/advisories/19941http://secunia.com/advisories/19950http://secunia.com/advisories/20051http://secunia.com/advisories/22065http://securityreason.com/securityalert/514http://www.debian.org/security/2006/dsa-1046http://www.debian.org/security/2006/dsa-1051http://www.gentoo.org/security/en/glsa/glsa-200604-18.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200605-09.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:078http://www.mozilla.org/security/announce/2006/mfsa2006-26.htmlhttp://www.novell.com/linux/security/advisories/2006_04_25.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0330.htmlhttp://www.securityfocus.com/archive/1/426347http://www.securityfocus.com/archive/1/446657/100/200/threadedhttp://www.securityfocus.com/bid/16881http://www.securityfocus.com/bid/17516http://www.vupen.com/english/advisories/2006/1356http://www.vupen.com/english/advisories/2006/3749https://exchange.xforce.ibmcloud.com/vulnerabilities/24959https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975https://usn.ubuntu.com/276-1/http://secunia.com/advisories/19821http://secunia.com/advisories/19823http://secunia.com/advisories/19863http://secunia.com/advisories/19902http://secunia.com/advisories/19941http://secunia.com/advisories/19950http://secunia.com/advisories/20051http://secunia.com/advisories/22065http://securityreason.com/securityalert/514http://www.debian.org/security/2006/dsa-1046http://www.debian.org/security/2006/dsa-1051http://www.gentoo.org/security/en/glsa/glsa-200604-18.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200605-09.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:078http://www.mozilla.org/security/announce/2006/mfsa2006-26.htmlhttp://www.novell.com/linux/security/advisories/2006_04_25.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0330.htmlhttp://www.securityfocus.com/archive/1/426347http://www.securityfocus.com/archive/1/446657/100/200/threadedhttp://www.securityfocus.com/bid/16881http://www.securityfocus.com/bid/17516http://www.vupen.com/english/advisories/2006/1356http://www.vupen.com/english/advisories/2006/3749https://exchange.xforce.ibmcloud.com/vulnerabilities/24959https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975https://usn.ubuntu.com/276-1/
2006-03-07
Published