Theres a flaw in Thunderbird that can be abused to make sure that when email recipients click on a specially crafted link, the site is opened in a new Thunderbird tab, instead of the web browser. Mozilla has been aware of this issue since November 2011, but so far, it hasnt done anything to address it.
The flaw has been identified and reported by Mike Cardwell. After seeing that Mozilla doesnt take the bug seriously, he has decided to make his findings public….
Comments are closed.
