CVE-2005-3006 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-3006 Interim 1 3 2021-06-09T08:34:57Z current 2021-05-30T12:33:34Z 2021-06-09T08:34:57Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-3006 The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/opensuse-security-announce/2005-09/msg00021.html E-Mail link for SUSE-SA:2005:057 https://www.suse.com/support/security/rating/ SUSE Security Ratings The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames. CVE-2005-3006 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N