36 matches found
EUVD-2005-1771
Malware in sbrugna...
EUVD-2007-1259
Malware in sbrugna...
EUVD-2002-1119
Malware in sbrugna...
EUVD-2011-2728
Malware in sbrugna...
EUVD-2003-0156
Malware in sbrugna...
EUVD-2006-6125
Malware in sbrugna...
EUVD-2004-0638
Malware in sbrugna...
DSA-662-2 squirrelmail - several
Andrew Archibald discovered that the last update to squirrelmail which was intended to fix several problems caused a regression which got exposed when the user hits a session timeout. For completeness below is the original advisory text: Several vulnerabilities have been discovered in...
GLSA-200501-39 : SquirrelMail: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200501-39 SquirrelMail: Multiple vulnerabilities SquirrelMail fails to properly sanitize certain strings when decoding specially crafted strings, which can lead to PHP file inclusion and XSS. Insufficient checking of incoming URLs...
Debian DSA-662-2 : squirrelmail - several vulnerabilities
Andrew Archibald discovered that the last update to squirrelmail which was intended to fix several problems caused a regression which got exposed when the user hits a session timeout. For completeness below is the original advisory text : Several vulnerabilities have been discovered in...
[SECURITY] [DSA 662-1] New squirrelmail package fixes several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 662-1 [email protected] http://www.debian.org/security/ Martin Schulze February 1st, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 662-1] New squirrelmail package fixes several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 662-1 [email protected] http://www.debian.org/security/ Martin Schulze February 1st, 2005 http://www.debian.org/security/faq -...
SquirrelMail: Multiple vulnerabilities
Background SquirrelMail is a webmail package written in PHP. It supports IMAP and SMTP and can optionally be installed with SQL support. Description SquirrelMail fails to properly sanitize certain strings when decoding specially-crafted strings, which can lead to PHP file inclusion and XSS...
SquirrelMail < 1.4.4 Multiple Vulnerabilities
The target is running at least one instance of SquirrelMail whose version number suggests it is affected by one or more cross-site scripting vulnerabilities : - Insufficient escaping of integer variables in webmail.php allows a remote attacker to include HTML / script into a SquirrelMail webpage...
[SA13962] SquirrelMail Three Vulnerabilities
TITLE: SquirrelMail Three Vulnerabilities SECUNIA ADVISORY ID: SA13962 VERIFY ADVISORY: http://secunia.com/advisories/13962/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Exposure of sensitive information WHERE: From remote SOFTWARE: SquirrelMail 1.x http://secunia.com/product/288/...
Debian DSA-191-1 : squirrelmail - XSS
Several cross site scripting vulnerabilities have been found in squirrelmail, a feature-rich webmail package written in PHP4. The Common Vulnerabilities and Exposures CVE project identified the following vulnerabilities : - CAN-2002-1131: User input is not always sanitized so execution of arbitra...
SquirrelMail < 1.4.3 Multiple Vulnerabilities
Binary data 1217.prm...
SquirrelMail < 1.4.18 Multiple Vulnerabilities
Binary data 5037.prm...
CVE-2004-0639
Multiple cross-site scripting XSS vulnerabilities in Squirrelmail 1.2.10 and earlier allow remote attackers to inject arbitrary HTML or script via 1 the $mailer variable in readbody.php, 2 the $senderNamespart variable in mailboxdisplay.php, and possibly other vectors including 3 the $eventtitle...
[SECURITY] [DSA 535-1] New squirrelmail packages fix multiple vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 535-1 [email protected] http://www.debian.org/security/ Matt Zimmerman August 2nd, 2004 http://www.debian.org/security/faq -...