SquirrelMail webmail.php right_frame Variable XSS

2006-02-01T06:20:53
ID OSVDB:23384
Type osvdb
Reporter OSVDB
Modified 2006-02-01T06:20:53

Description

Solution Description

Upgrade to version 1.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.squirrelmail.org/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1015662 Secunia Advisory ID:18985 Secunia Advisory ID:19130 Secunia Advisory ID:19960 Secunia Advisory ID:20210 Secunia Advisory ID:19131 Secunia Advisory ID:19176 Secunia Advisory ID:19205 Related OSVDB ID: 23385 Related OSVDB ID: 23386 RedHat RHSA: RHSA-2006:0283 Other Advisory URL: http://www.debian.org/security/2006/dsa-988 CVE-2006-0188