Closed Bug 1548252 Opened 6 years ago Closed 6 years ago

Thunderbird vulnerable to S/MIME signature spoofing attacks

Categories

(Thunderbird :: Security, defect)

Product:
Thunderbird
Component:
Security
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 1530106

People

(Reporter: adriano.santoni, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36

Steps to reproduce:

Please read this article:
https://thehackernews.com/2019/04/email-signature-spoofing.html

Those have been fixed, apart from bug 1530106 which is under discussion what would be the appropriate counter measure. (As it's strictly not a technical flaw.)

Status: UNCONFIRMED → RESOLVED
Closed: 6 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.