Linux Distros Unpatched Vulnerability : CVE-2010-1637

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to sc...

RHEL 3 : squirrelmail (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 3 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - SquirrelMail: Mail Fetch plugin -- port-scans via non-standard POP3 server ports CVE-2010-1637 -...

SUSE CVE-2010-1637

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

Information Disclosure

squirrelmail is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the SquirrelMail Mail Fetch plug-in. If an administrator enabled this plug-in, a SquirrelMail user could use this flaw to port scan the local network the server was on...

Oracle Linux 5 : squirrelmail (ELSA-2012-0103)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2012-0103 advisory. - patch for CVE-2010-2813 was not complete - fix: CVE-2010-1637 : Port-scans via non-standard POP3 server ports in Mail Fetch plugin - fix: CVE-2010-28...

SquirrelMail: Mail Fetch plugin -- port-scans via non-standard POP3 server ports

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

Moderate: Red Hat Security Advisory: squirrelmail security update

An updated squirrelmail package that fixes several security issues is now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Fedora 12 : squirrelmail-1.4.20-3.fc12 (2010-10244)

Tue Jun 22 2010 Michal Hlavinka - 1.4.20-3 - fix CVE-2010-1637 : mail fetch plugin's port-scans via non-standard POP3 server ports - Mon Jun 7 2010 Michal Hlavinka - 1.4.20-2 - add note to config file that https connections are forced by default - Mon Mar 8 2010 Michal Hlavinka - 1.4.20-1 -...

Fedora 11 : squirrelmail-1.4.20-2.fc11 (2010-10264)

Tue Jun 22 2010 Michal Hlavinka - 1.4.20-2 - fix CVE-2010-1637 : mail fetch plugin's port-scans via non-standard POP3 server ports - Mon Mar 8 2010 Michal Hlavinka - 1.4.20-1 - updated to 1.4.20 - translations updated - Thu Sep 17 2009 Michal Hlavinka - 1.4.20-0.rc2.20100104 - updated to...

Mandriva Update for squirrelmail MDVSA-2010:120 (squirrelmail)

Check for the Version of squirrelmail OpenVAS Vulnerability Test Mandriva Update for squirrelmail MDVSA-2010:120 squirrelmail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Mandriva Update for squirrelmail MDVSA-2010:120 (squirrelmail)

Check for the Version of squirrelmail OpenVAS Vulnerability Test Mandriva Update for squirrelmail MDVSA-2010:120 squirrelmail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CVE-2010-1637

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

Design/Logic Flaw

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

CVE-2010-1637

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

CVE-2010-1637

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...

CVE-2010-1637

CVE-2010-1637 affects SquirrelMail up to version 1.4.20 with the Mail Fetch plugin. The vulnerability allows remote authenticated users to bypass firewall rules and proxy through a modified POP3 port to scan internal networks. The documented impact is limited to port-scanning capability via the M...

PT-2010-3299 · Squirrelmail +1 · Squirrelmail +1

Name of the Vulnerable Software and Affected Versions: SquirrelMail versions 1.4.20 and earlier Description: The issue allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number. This is made possible...