Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.30 views

Oracle Linux 5 : squirrelmail (ELSA-2009-0057)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-0057 advisory. 1.4.8-5.0.1.el52.3 - Remove Redhat splash screen images 1.4.8-5.3 - Update patch for CVE-2008-3663 to fix a session handling regression 480224 Tenable...

6.5CVSS7.4AI score0.02159EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.34 views

Oracle Linux 5 : squirrelmail (ELSA-2009-0010)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-0010 advisory. - Resolves: CVE-2008-2379 - Resolves: CVE-2008-3663, 468398 Tenable has extracted the preceding description block directly from the Oracle Linux securi...

5CVSS5.6AI score0.02159EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.38 views

CentOS Update for squirrelmail CESA-2009:0010 centos4 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS5.2AI score0.02159EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.24 views

Fedora Core 9 FEDORA-2009-5471 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory FEDORA-2009-5471. OpenVAS Vulnerability Test $Id: fcore20095471.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5471 squirrelmail Authors: Thomas Reinke Copyright: Copyright...

6.8CVSS0.1AI score0.03399EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.25 views

Fedora Core 9 FEDORA-2009-5471 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory FEDORA-2009-5471. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...

6.8CVSS6.8AI score0.03399EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2009/05/26 12:0 a.m.33 views

Fedora 9 : squirrelmail-1.4.19-1.fc9 (2009-5471)

Fri May 22 2009 Michal Hlavinka - 1.4.19-1 - updated to 1.4.19 - fixes CVE-2009-1579, CVE-2009-1580, CVE-2009-1581 - Tue May 19 2009 Michal Hlavinka - 1.4.18-2 - fix undefined variable aSpamIds 501260 - Tue May 12 2009 Michal Hlavinka - 1.4.18-1 - update to 1.4.18 fixes CVE-2009-1581 - Thu Dec 4...

6.8CVSS7.2AI score0.03399EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2009/05/20 12:0 a.m.29 views

Fedora Core 9 FEDORA-2009-4870 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory FEDORA-2009-4870. OpenVAS Vulnerability Test $Id: fcore20094870.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-4870 squirrelmail Authors: Thomas Reinke Copyright: Copyright...

6.8CVSS0.3AI score0.03399EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2009/05/20 12:0 a.m.28 views

Fedora Core 9 FEDORA-2009-4870 (squirrelmail)

The remote host is missing an update to squirrelmail announced via advisory FEDORA-2009-4870. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...

6.8CVSS6.8AI score0.03399EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2009/05/13 12:0 a.m.40 views

Fedora 9 : squirrelmail-1.4.18-1.fc9 (2009-4870)

Tue May 12 2009 Michal Hlavinka - 1.4.18-1 - update to 1.4.18 fixes CVE-2009-1581 - Thu Dec 4 2008 Michal Hlavinka - 1.4.17-1 - update to 1.4.17 fixes CVE-2008-2379 - Wed Oct 1 2008 Michal Hlavinka - 1.4.16-1 - update to 1.4.16 - resolves: 464185: CVE-2008-3663 Squirrelmail session hijacking Note...

6.8CVSS7.2AI score0.03399EPSS
Exploits4References9
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.25 views

Fedora Update for squirrelmail FEDORA-2008-9071

Check for the Version of squirrelmail OpenVAS Vulnerability Test Fedora Update for squirrelmail FEDORA-2008-9071 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.8CVSS0.5AI score0.03914EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.17 views

Fedora Update for squirrelmail FEDORA-2008-9071

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS7.5AI score0.03914EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.20 views

Fedora Update for squirrelmail FEDORA-2008-8559

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS7.5AI score0.02159EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.19 views

Fedora Update for squirrelmail FEDORA-2008-10740

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS7.6AI score0.02159EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2009/02/12 12:0 a.m.45 views

SquirrelMail HTTPS Session Cookie Secure Flag Weakness

The version of SquirrelMail installed on the remote host does not set the 'secure' flag for session cookies established when communicating over SSL / TLS. This could lead to disclosure of those cookies if a user issues a request to a host in the same domain over HTTP as opposed to HTTPS...

5CVSS5.4AI score0.02159EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2009/02/05 12:0 a.m.32 views

openSUSE 10 Security Update : squirrelmail (squirrelmail-5978)

This update of squirrelmail corrects a problem introduced by a patch for CVE-2008-3663 that caused cookies to be static. CVE-2009-0030 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

6.5CVSS5.3AI score0.02159EPSS
Exploits2References2
Prion
Prion
added 2009/01/21 8:30 p.m.28 views

Design/Logic Flaw

A certain Red Hat patch for SquirrelMail 1.4.8 sets the same SQMSESSID cookie value for all sessions, which allows remote authenticated users to access other users' folder lists and configuration data in opportunistic circumstances by using the standard webmail.php interface. NOTE: this...

6.5CVSS6.3AI score0.02159EPSS
Exploits2References9Affected Software1
CVE
CVE
added 2009/01/21 8:0 p.m.73 views

CVE-2009-0030

CVE-2009-0030 corresponds to a session cookie handling flaw in SquirrelMail 1.4.8 patched by Red Hat/Miracle Linux advisories. The root cause was an incorrect fix for CVE-2008-3663, causing the SQMSESSID cookie value to be identical across sessions. This enables remote authenticated users to acce...

6.5CVSS7.2AI score0.01675EPSS
Exploits1References9Affected Software1
Oracle linux
Oracle linux
added 2009/01/20 12:0 a.m.47 views

squirrelmail security update

1.4.8-5.0.1.el52.3 - Remove Redhat splash screen images 1.4.8-5.3 - Update patch for CVE-2008-3663 to fix a session handling regression 480224...

6.5CVSS0.8AI score0.02159EPSS
Exploits2
OpenVAS
OpenVAS
added 2009/01/13 12:0 a.m.29 views

CentOS Security Advisory CESA-2009:0010 (squirrelmail)

The remote host is missing updates to squirrelmail announced in advisory CESA-2009:0010. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

7.5AI score
Exploits0References3
Oracle linux
Oracle linux
added 2009/01/12 12:0 a.m.44 views

squirrelmail security update

1.4.8-5.0.1.el52.2 - Remove Redhat splash screen images 1.4.8-5.2 - Resolves: CVE-2008-2379 - fix XSS issue caused by an insufficient html mail sanitation 1.4.8-5.1 - don't transmit cookies under non-SSL connections if the session is started under an SSL https connection - Resolves: CVE-2008-3663...

5CVSS0.4AI score0.02159EPSS
Exploits3
Rows per page
Query Builder