|
Family: Debian Local Security Checks --> Category: infos
[DSA793] DSA-793-1 courier Vulnerability Scan
Vulnerability Scan Summary DSA-793-1 courier
Detailed Explanation for this Vulnerability Test
Jakob Balle discovered a vulnerability in the handling of attachments
in sqwebmail, a web mail application provided by the courier mail
suite, which can be exploited by a possible hacker to conduct script
insertion attacks.
For the old stable distribution (woody) this problem has been fixed in
version 0.37.3-2.6.
For the stable distribution (sarge) this problem has been fixed in
version 0.47-4sarge2.
For the unstable distribution (sid) this problem has been fixed in
version 0.47-8.
We recommend that you upgrade your sqwebmail package.
Solution : http://www.debian.org/security/2005/dsa-793
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|