CVE-2004-1036

2005-03-01T05:00:00
ID CVE-2004-1036
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:29:00

Description

Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and earlier, and 1.5.1-cvs before 23rd October 2004, allows remote attackers to execute arbitrary web script or HTML.