Vulnerabilities > CVE-2006-3108 - Cross-Site Scripting vulnerability in Emailarchitect Email Server 6.1

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

emailarchitect

NVD

Published: 2006-06-21

Updated: 2008-09-05

Summary

Cross-site scripting (XSS) vulnerability in EmailArchitect Email Server 6.1 allows remote attackers to inject arbitrary Javascript via an HTML div tag with a carriage return between the onmouseover attribute and its value, which bypasses the mail filter.

Vulnerable Configurations

Part	Description	Count
Application	Emailarchitect Emailarchitect Email Server 6.1	1

References

http://securitytracker.com/id?1016243