Cross-Site Scripting Vulnerability in Novell NetMail 3.52
CVE-2005-1756

Currently unrated

Key Information:

Vendor: Novell
Status: Netmail
Vendor: CVE Published:; 8 June 2005

What is CVE-2005-1756?

The ModWeb agent in Novell NetMail before version 3.52C is susceptible to a cross-site scripting vulnerability. This flaw allows remote attackers to execute arbitrary web scripts or HTML within the context of a victim's browser via manipulated calendar display fields. Potential exploitation of this vulnerability could lead to unauthorized access or data manipulation, emphasizing the importance of security updates and measures.

References

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2005/0727

vdb-entryx_refsource_VUPEN

http://www.osvdb.org/17240

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2005
Vulnerability Reserved
May 28, 2005