User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:220.127.116.11) Gecko/20060111 Firefox/18.104.22.168 Build Identifier: Thunderbird version 1.5 (20051201) In some recent spam emails, Unicode characters are used to bypass image blocking to show an image and track users. Reproducible: Always Steps to Reproduce: 1.have image blocking enabled 2.open affected spam message Actual Results: An image appears Expected Results: It should be blocked
Summary: Unicode characters bypass image blocking in spam → Unicode characters in spam bypass image blocking
It's not blocked because the image in the attached mail is not a remote image (the only image is inline) -> no privacy concerns.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 12 years ago
Resolution: --- → INVALID
(In reply to comment #2) > It's not blocked because the image in the attached mail is not a remote image > (the only image is inline) -> no privacy concerns. > Are you sure? Why doesn't it show up as an attachment?
Yes I'm sure. Inline images in HTML mails do not (and are not supposed to) show up as attachments. You can easily verfy by sending one to yourself- use Insert -> Image... and choose a gif/jpg/png file.
You need to log in before you can comment on or make changes to this bug.