Vulnerabilities > CVE-2003-0160 - Unspecified vulnerability in Squirrelmail
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.2.11 allow remote attackers to inject arbitrary HTML code and steal information from a client's web browser.
Vulnerable Configurations
Oval
| accepted | 2007-04-25T19:52:37.549-04:00 | ||||||||||||
| class | vulnerability | ||||||||||||
| contributors |
| ||||||||||||
| description | Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.2.11 allow remote attackers to inject arbitrary HTML code and steal information from a client's web browser. | ||||||||||||
| family | unix | ||||||||||||
| id | oval:org.mitre.oval:def:614 | ||||||||||||
| status | accepted | ||||||||||||
| submitted | 2003-08-17T12:00:00.000-04:00 | ||||||||||||
| title | SqirrelMail Cross-site Scripting Vulnerabilities | ||||||||||||
| version | 38 |
Redhat
| advisories |
|
References
- http://sourceforge.net/mailarchive/forum.php?thread_id=1641953&forum_id=1988
- http://sourceforge.net/mailarchive/forum.php?thread_id=1641953&forum_id=1988
- http://www.redhat.com/support/errata/RHSA-2003-112.html
- http://www.redhat.com/support/errata/RHSA-2003-112.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A614
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A614