CVE-2005-2176 Information

Description

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it which makes it easier for remote attackers to conduct web-based attacks and steal cookies.

Reference

http://secunia.com/advisories/15962 http://securitytracker.com/id?1014439 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972340.htm http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972433.htm http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972438.htm http://www.osvdb.org/17821 http://www.securityfocus.com/bid/14171 http://www.vupen.com/english/advisories/2005/0994