HTML Processing Vulnerability in Novell NetMail
CVE-2005-2176

Currently unrated

Key Information:

Vendor: Novell
Status: Netmail
Vendor: CVE Published:; 9 July 2005

Summary

An HTML processing vulnerability in Novell NetMail allows attackers to exploit the software by automatically handling HTML in attachments without requiring user interaction to save or open them. This behavior facilitates remote attackers in executing web-based attacks, potentially leading to the theft of sensitive cookies and other information without the user's awareness.

References

http://www.vupen.com/english/advisories/2005/0994

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/15962

third-party-advisoryx_refsource_SECUNIA

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 9, 2005
Vulnerability Reserved
Jul 9, 2005