Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Debian Local Security Checks --> Category: infos

[DSA1154] DSA-1154-1 squirrelmail Vulnerability Scan

Vulnerability Scan Summary
DSA-1154-1 squirrelmail

Detailed Explanation for this Vulnerability Test

James Bercegay of GulfTech Security Research discovered a vulnerability
in SquirrelMail where an authenticated user could overwrite random
variables in the compose script. This might be exploited to read or
write the preferences or attachment files of other users.
For the stable distribution (sarge) this problem has been fixed in
version 1.4.4-9.
For the unstable distribution (sid) this problem has been fixed in
version 1.4.8-1.
We recommend that you upgrade your squirrelmail package.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.