logo
DATABASE RESOURCES PRICING ABOUT US

Denial Of Service (DoS)

Description

squirrelmail is vulnerable to denial of service (DoS). The vulnerability exists as a flaw was found in the way SquirrelMail handled failed log in attempts. A user preference file was created when attempting to log in with a password containing an 8-bit character, even if the username was not valid. A remote attacker could use this flaw to eventually consume all hard disk space on the target SquirrelMail server.


Affected Software


CPE Name Name Version
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5

Related