logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2010-2813

Description

functions/imap_general.php in SquirrelMail before 1.4.21 does not properly handle 8-bit characters in passwords, which allows remote attackers to cause a denial of service (disk consumption) by making many IMAP login attempts with different usernames, leading to the creation of many preferences files. #### Bugs * <https://bugzilla.redhat.com/show_bug.cgi?id=618096> #### Notes Author| Note ---|--- [tyhicks](<https://launchpad.net/~tyhicks>) | Note that Red Hat Security Advisory RHSA-2012:010 was incomplete (see CVE-2012-2124)


Affected Package


OS OS Version Package Name Package Version
ubuntu upstream squirrelmail 1.4.21

Related