3 matches found
CVE-2005-0386
Cross-site scripting XSS vulnerability in network.cgi in mailreader before 2.3.29 earlier allows remote attackers to inject arbitrary web script or HTML via MIME text/enriched or text/richtext messages...
CVE-2005-0386
CVE-2005-0386 is an XSS vulnerability in mailreader's network.cgi before 2.3.29 that allows remote attackers to inject arbitrary script/HTML via MIME types text/enriched or text/richtext. Affected product: mailreader; root cause: missing input sanitising when displaying messages. Impact: remote, ...
Debian DSA-700-1 : mailreader - missing input sanitising
Ulf Harnhammar from the Debian Security Audit Project discovered a cross-site scripting problem in mailreader, a simple, but powerful WWW mail reader system, when displaying messages of the MIME types text/enriched or text/richtext. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...