2 matches found
CVE-2006-0892
CVE-2006-0892 affects NOCC Webmail 1.0. The vulnerability arises from how attachments are stored and named in temporary files, enabling directory traversal to access e-mail attachments. Related sources also describe a local file include flaw in NOCC (via the lang parameter in index.php) that coul...
CVE-2006-0892
NOCC Webmail 1.0 stores e-mail attachments in temporary files with predictable filenames, which makes it easier for remote attackers to execute arbitrary code by accessing the e-mail attachment via directory traversal vulnerabilities...