Thunderbird before 0.9, when running on Windows systems, uses the default handler when processing javascript: links, which invokes Internet Explorer and may expose the Thunderbird user to vulnerabilities in the version of Internet Explorer that is installed on the user's system. NOTE: since the invocation between multiple products is a common practice, and the vulnerabilities inherent in multi-product interactions are not easily enumerable, this issue might be REJECTED in the future.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2005-05-02 04:00
Updated : 2024-02-28 10:42
NVD link : CVE-2005-0148
Mitre link : CVE-2005-0148
CVE.ORG link : CVE-2005-0148
JSON object : View
Products Affected
mozilla
- thunderbird
CWE