DEBIAN-CVE-2006-1045

DEBIAN-CVE-2006-1045 PUBLISHED CVSS 8.699999809265137 HIGH

The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:12	thunderbird	0, 0, 0
Debian:11	thunderbird	0, 0, 0
Debian:13	thunderbird	0, 0, 0
Debian:14	thunderbird	0, 0, 0

Timeline

Mar 7, 2006 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2006-1045 advisory

Open in Interactive Console →