CVE-2006-0892

Name of the Vulnerable Software and Affected Versions NOCC Webmail version 1.0

Description The issue allows remote attackers to execute arbitrary code by accessing e-mail attachments via directory traversal vulnerabilities, as the attachments are stored in temporary files with predictable filenames.

Recommendations For NOCC Webmail version 1.0, consider implementing a secure method for generating temporary filenames to prevent predictability and restrict access to temporary files to minimize the risk of exploitation.