#255 Outlook Express Stationary

1.180
closed
Jamie Cameron
Read Mail (122)
5
2006-01-12
2006-01-12
Anonymous
No

When trying to read an email sent from Outlook Express
with stationary enabled the read mail page put some of
the HTML code of the message into the main headers of
the HTML page.
For example;
-----------------------------------------
<!doctype html public "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<title>Read Email</title>

<META http-equiv=Content-Type content="text/html;
charset=windows-1252"><BASE
href="file://C:\Program Files\Common Files\Microsoft
Shared\Stationery\">
<STYLE>BODY {
BACKGROUND-POSITION: left top; FONT-SIZE: 10pt; COLOR:
#000000; BACKGROUND-REPEAT: no-repeat; FONT-FAMILY:
Agency FB
}
</STYLE>

<META content="MSHTML 6.00.2900.2802"
name=GENERATOR><script language=JavaScript
type=text/javascript>
defaultStatus="jeffd logged into Usermin 1.180 on
domain.com (FreeBSD 4.11)";
</SCRIPT>
<link rel='stylesheet' href='/theme.css' type='text/css' />
</head>
-----------------------------------------
Obviously I don't think that the <BASE> tag or the
<META content="MSHTML"> should be there.
This is a copy and paste of the first few line of the
html source, this should only occur in the message
body, not the actual page! Maybe an iframe would fix
this for HTML mails?

Usermin 1.180
FreeBSD 4.11
Postfix 2.2.3
Using mailbox, not maildir.

Thank You.

Discussion

  • Jamie Cameron
    Jamie Cameron
    2006-01-12

    Logged In: YES
    user_id=129364

    There is an ill-advised feature in Usermin that causes this
    to happen .. the HTML from the email's <head> section gets
    included in the mail reading page's <head> section as well.
    Since this is not a good idea from a security or page layout
    point of view, I will turn it off by default in the next
    release..

     
  • Jamie Cameron
    Jamie Cameron
    2006-01-12

    • status: open --> closed