Vulnerabilities > CVE-2003-0160 - Unspecified vulnerability in Squirrelmail
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE network
squirrelmail
Summary
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.2.11 allow remote attackers to inject arbitrary HTML code and steal information from a client's web browser.
Vulnerable Configurations
Oval
accepted | 2007-04-25T19:52:37.549-04:00 | ||||||||||||
class | vulnerability | ||||||||||||
contributors |
| ||||||||||||
description | Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.2.11 allow remote attackers to inject arbitrary HTML code and steal information from a client's web browser. | ||||||||||||
family | unix | ||||||||||||
id | oval:org.mitre.oval:def:614 | ||||||||||||
status | accepted | ||||||||||||
submitted | 2003-08-17T12:00:00.000-04:00 | ||||||||||||
title | SqirrelMail Cross-site Scripting Vulnerabilities | ||||||||||||
version | 38 |
Redhat
advisories |
|