Lucene search

[email protected]CVE-2005-2176

HistoryJul 09, 2005 - 4:00 a.m.

CVE-2005-2176

2005-07-0904:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

novell netmail

cve-2005-2176

web-based attacks

security vulnerability

nvd

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.018 Low

EPSS

Percentile

88.3%

JSON

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.

CPENameOperatorVersion
novell:netmailnovell netmaileq3.5.2
novell:netmailnovell netmaileq3.1
novell:netmailnovell netmaileq3.10
novell:netmailnovell netmaileq3.0.1
novell:netmailnovell netmaileq3.0.3a

CPE	Name	Operator	Version
novell:netmail	novell netmail	eq	3.5.2
novell:netmail	novell netmail	eq	3.1
novell:netmail	novell netmail	eq	3.10
novell:netmail	novell netmail	eq	3.0.1
novell:netmail	novell netmail	eq	3.0.3a

References

secunia.com/advisories/15962

securitytracker.com/id?1014439

support.novell.com/cgi-bin/search/searchtid.cgi?/2972340.htm

support.novell.com/cgi-bin/search/searchtid.cgi?/2972433.htm

support.novell.com/cgi-bin/search/searchtid.cgi?/2972438.htm

www.osvdb.org/17821

www.securityfocus.com/bid/14171

www.vupen.com/english/advisories/2005/0994

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.018 Low

EPSS

Percentile

88.3%

JSON

Related for CVE-2005-2176

cvelist1