Oval Definition:	oval:org.mitre.oval:def:1975
Revision Date: 2011-02-21 Version: 5 Title: Mozilla Mail Multiple Information Disclosure Description: The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-1045 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP Product(s): mozilla Definition Synopsis Mozilla Thunderbird version 1.5 is installed and has NOT been patched with version 1.5.0.2 Thunderbird version 1.5 or earlier is installed AND Mozilla Thunderbird version 1.5 is installed AND NOT The version of thunderbird.exe is greater than or equal to 1.8.20060.30803 (v1.5.0.2) OR Mozilla Thunderbird version 1.0.7 or earlier is installed Mozilla Thunderbird version 1.0.7 or earlier is installed AND Mozilla Thunderbird version 1.0.7 or earlier is installed
BACK