VULHUB ™

Thunderbird's HTML rendering engine insufficiently filters the loading of external resources from inline HTML attachments. External files are download ed even if the "Block loading of remote images in mail messages" option is enabled. Proof of concept exploitation details provided.

Thunderbird's HTML rendering engine insufficiently filters the loading of external resources from inline HTML attachments. External files are download ed even if the "Block loading of remote images in mail messages" option is enabled. Proof of concept exploitation details provided.