Users of Horde Webmail are being urged to disable a feature to contain a nine-year-old unpatched security vulnerability in the software that could be abused to gain complete access to email accounts simply by previewing an attachment.
"This gives the attacker access to all sensitive and perhaps secret information a victim has stored in their email account and could allow them to gain further