Family: Debian Local Security Checks --> Category: infos
[DSA191] DSA-191-1 squirrelmail Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Several cross site scripting vulnerabilities have been found in
squirrelmail, a feature-rich webmail package written in PHP4. The
Common Vulnerabilities and Exposures (CVE) project identified the
These problems have been fixed in version 1.2.6-1.1 for the current stable
distribution (woody) and in version 1.2.8-1.1 for the unstable
distribution (sid). The old stable distribution (potato) is not
affected since it doesn't contain a squirrelmail package.
We recommend that you upgrade your squirrelmail package.
Solution : http://www.debian.org/security/2002/dsa-191
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.