CVE-2005-2176

Exploit

EPSS 4.33%
Published 09.07.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Novell ≫ Netmail Version3.0.1

Novell ≫ Netmail Version3.0.3a Updatea

Novell ≫ Netmail Version3.0.3a Updateb

Novell ≫ Netmail Version3.1

Novell ≫ Netmail Version3.1 Updatef

Novell ≫ Netmail Version3.5.2 Updatea

Novell ≫ Netmail Version3.5.2 Updateb

Novell ≫ Netmail Version3.5.2 Updatec

Novell ≫ Netmail Version3.5.2 Updatec1

Novell ≫ Netmail Version3.5.2 Updatee-ftfl

Novell ≫ Netmail Version3.10

Novell ≫ Netmail Version3.10 Updatea

Novell ≫ Netmail Version3.10 Updateb

Novell ≫ Netmail Version3.10 Updatec

Novell ≫ Netmail Version3.10 Updated

Novell ≫ Netmail Version3.10 Updatee

Novell ≫ Netmail Version3.10 Updatef

Novell ≫ Netmail Version3.10 Updateg

Novell ≫ Netmail Version3.10 Updateh

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	4.33%	0.878

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:P/I:P/A:N

http://secunia.com/advisories/15962

Vendor Advisory

http://securitytracker.com/id?1014439

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972340.htm

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972433.htm

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972438.htm

http://www.osvdb.org/17821

http://www.securityfocus.com/bid/14171

Exploit

http://www.vupen.com/english/advisories/2005/0994

https://nvd.nist.gov/vuln/detail/CVE-2005-2176

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2176

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2176

EUVD