Lucene search
GoogleOSV:DSA-533HistoryJul 22, 2004 - 12:00 a.m.
courier - cross-site scripting
2004-07-2200:00:00
Google
osv.dev
3
0.916 High
EPSS
Percentile
98.9%
A cross-site scripting vulnerability was discovered in sqwebmail, a
web mail application provided by the courier mail suite, whereby an
attacker could cause web script to be executed within the security
context of the sqwebmail application by injecting it via an email
message.
For the current stable distribution (woody), this problem has been
fixed in version 0.37.3-2.5.
For the unstable distribution (sid), this problem has been fixed in
version 0.45.4-4.
We recommend that you update your courier package.
References
Related
nessus
nessus
GLSA-200408-02 : Courier: XSS vulnerability in SqWebMail
2004-08-30 00:00:00
Debian DSA-533-1 : courier - XSS
2004-09-29 00:00:00
gentoo
gentoo
Courier: Cross-site scripting vulnerability in SqWebMail
2004-08-04 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200408-02 (Courier)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200408-02 (Courier)
2008-09-24 00:00:00
Debian Security Advisory DSA 533-1 (courier)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2004-0591
2004-08-06 00:00:00
cvelist
cvelist
CVE-2004-0591
2004-06-24 04:00:00
cve
cve
CVE-2004-0591
2004-08-06 04:00:00
debian
debian
nvd
nvd
CVE-2004-0591
2004-08-06 04:00:00
debiancve
debiancve
CVE-2004-0591
2004-08-06 04:00:00