Closed Bug 832519 Opened 11 years ago Closed 11 years ago

Thunderbird attached a past email with sensitive information to a new email.

Categories

(Thunderbird :: General, defect)

Product:
Thunderbird
Component:
General
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 799450

People

(Reporter: drdanielbanks, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.11 (KHTML, like Gecko) Chrome/23.0.1271.97 Safari/537.11

Steps to reproduce:

I created a new email and sent to a distribution list.


Actual results:

In sending the email, Thunderbird attached an old email with sensitive tax information and sent it with the new email.  This information does not appear in the body of the sent message in my outbox, but did appear in the Inbox of some recipients.


Expected results:

My privacy should not have been violated.
this is not an s-s bug, while the behavior is strange and the content of this particular instance did have something private I don't believe the possible issue here is of itself security related.
Group: mozilla-services-security
Product: Mozilla Services → Thunderbird
Perhaps I was not clear -- Thunderbird distributed my social security # to over 100 people.  It also, I have since learned, distributed my private travel schedule. How is this not a security issue? Thank you.
(In reply to drdanielbanks from comment #0)
> Actual results:
> In sending the email, Thunderbird attached an old email with sensitive tax
> information and sent it with the new email.
> This information does not appear in the body of the sent message in my outbox,
> but did appear in the Inbox of some recipients.


What do you call by "This information does not appear in the body of the sent message in my outbox"? I guess (b).
(a) The data doesn't exist in message source in your outbox.
(b) The data exist in message source, but it's not shown by mail display.

> Steps to reproduce:
> I created a new email and sent to a distribution list.

No attachment by your file/mail attaching operation?
I guess you didn't do any attaching operation.

HTML mail? Plain text mail? I guess HTML mail.
Is embed image used in HTML? (in signature, insert image while HTML mail compsition) I guess Yes.
Is problem with local mail folder and/or local drafts folder? I guess Yes.
Do you enable auto-copact? I guess Yes.

If my guesses are right, you may be looking problem of bug 799450. See bug 766495 a variant. Read also bug 817245 for mechanism of such problems, please.
Yes, it appears to be the same problem as bug 799450.  So what is Mozilla doing about it?  And why has no one from Mozilla contacted me directly about this serious breach of my personal information?  How can I trust Thunderbird with such a known issue?  I have not used it since.  MOZILLA, I REQUEST YOU STEP UP TO THE PLATE, ACT RESPONSIBLY AND CONTACT ME DIRECTLY THIS WEEK SO THAT I CAN TALK TO AN ACTUAL PERSON WHO WILL OWN THIS PROBLEM AND SEE IT TO RESOLUTION. Thank you.
(In reply to drdanielbanks from comment #4)
> Yes, it appears to be the same problem as bug 799450.

Duping. If not dup, reopen this bug with attaching sufficient data required for problem analysis by developers, with detailed description about difference from that bug and relevant known bugs, please.
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.