Hi Marc, On Wed, Jun 04, 2003 at 02:55:13PM +0200, Marc Scheuffler wrote:
let us talk about something completly different.
A (probably virus) HTML-Email is in a queue. If an agent is viewing this queue the code will be executed.
This only happens if the agent's queue view is "Standard" because the body is shown. This is since OTRS 1.1.2.
There are many mails with e.g. an IFRAME tag "cid:sfkasof28222" in web at the moment.
Does someone understand what I am talking about? Does someone else has this problem?
Any suggestions to stop the execution? (I mean without filtering it before reaching OTRS)
Oh. It's a bug! Update to Kernel/Output/HTML/Agent.pm (v1.110.2.6) and it will not be shown anymore. http://cvs.otrs.org/cvsweb.cgi/~checkout~/otrs/Kernel/Output/HTML/Agent.pm?r... Thanks Marc!
Marc
Martin -- Martin Edenhofer - <martin at edenhofer.de> - http://martin.edenhofer.de/ -- "Security is a process, not a product." - Bruce Schneier