CVE-2006-3108

Name of the Vulnerable Software and Affected Versions EmailArchitect Email Server version 6.1

Description The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary Javascript code via an HTML div tag. The attack bypasses the mail filter by including a carriage return between the onmouseover attribute and its value.

Recommendations For EmailArchitect Email Server version 6.1, consider disabling the processing of HTML div tags with onmouseover attributes until a patch is available. Restrict access to potentially vulnerable email accounts to minimize the risk of exploitation.