2005-01-29 05:00:00
mitre
PUBLISHED
Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers to bypass the users intended privacy and security policy by using cookies in e-mail messages.