Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security / Advisories

Advisories

Mozilla Thunderbird: Emails at Risk!

Several vulnerabilities discovered in the famous mail client

By Bogdan Popa, Security and Search Engines Editor

19th of July 2007, 11:54 GMT

Adjust text size:


Mozilla Thunderbird
Enlarge picture
Mozilla Thunderbird, the famous email client, might get the users into trouble because several security flaws were discovered and confirmed by the parent company. Some of them are also affecting Firefox, the browser created by the same firm but they were already fixed in the 2.0.0.5 release rolled out yesterday. However, we're still waiting for a new update of Thunderbird in order to remain secure while sending and receiving email messages. Mozilla flagged the flaws as critical,
saying that Thunderbird 2.0.0.5 expected to be released these days will fix all of them.

"Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript, such as large images," Mozilla wrote in the security notification.

According to the alert, a malicious JavaScript can crash the email client without saving the data or any email process in action. As you can see, you're advised to avoid using JavaScript in emails in order to remain secure and reduce the possibility of a successful exploitation of the security flaw.

Thunderbird is surely one of the most popular email clients on the Internet because it is powered by Mozilla, the same creator of the famous browser Firefox. Just like this application, Thunderbird includes support for themes, extensions and other plug-ins that enable you to customize the appearance and the functionality of the program.

This way the user can configure most of the Thunderbird elements and obtain maximum performance from it. If you want to download the latest version of Thunderbird, you can take it straight from Softpedia.

TAGS:

 mozilla | thunderbird | security | flaw | vulnerability


Rating:
Fair (2.7/5) 4 vote(s) so far    

Read by 559 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Exciting Google - Thunderbird Partnership

Download Thunderbird 2.0 Beta 2

Firefox Extension Vulnerable to Attacks!

The Workaround for the Latest Firefox Flaw

Thunderbird Adds Gmail Support!

Mozilla Thunderbird Doesn't Protect Your Emails

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive