Remote content specified in an HTML document that was nested inside an iframe's srcdoc attribute was not blocked in Mozilla Thunderbird - CVE-2022-3032 (MacOS X)| ID: oval:org.secpod.oval:def:83463 | Date: (C)2022-09-01 (M)2023-11-19 |
| Class: VULNERABILITY | Family: macos |
Mozilla Thunderbird 102.2.1 : When receiving an HTML email that contained an iframe element, which used a srcdoc attribute to define the inner HTML document, remote objects specified in the nested document, for example images or videos, were not blocked. Rather, the network was accessed, the objects were loaded and displayed.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Apple Mac OS 11 |
| Apple Mac OS 12 |
| Product: |
| Mozilla Thunderbird |
