CVE-2002-1649

CVE-2002-1649 affects SquirrelMail prior to 1.2.3, in read_body.php. It is a Cross-site Scripting (XSS) flaw allowing remote attackers to execute arbitrary JavaScript via a javascript: URL in an IMG tag. No exploitation details are provided in the documents. Remediation: upgrade to SquirrelMail 1...