Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.870543
Category:Red Hat Local Security Checks
Title:RedHat Update for squirrelmail RHSA-2012:0103-01
Summary:The remote host is missing an update for the 'squirrelmail'; package(s) announced via the referenced advisory.
Description:Summary:
The remote host is missing an update for the 'squirrelmail'
package(s) announced via the referenced advisory.

Vulnerability Insight:
SquirrelMail is a standards-based webmail package written in PHP.

A cross-site scripting (XSS) flaw was found in the way SquirrelMail
performed the sanitization of HTML style tag content. A remote attacker
could use this flaw to send a specially-crafted Multipurpose Internet Mail
Extensions (MIME) message that, when opened by a victim, would lead to
arbitrary web script execution in the context of their SquirrelMail
session. (CVE-2011-2023)

Multiple cross-site scripting (XSS) flaws were found in SquirrelMail. A
remote attacker could possibly use these flaws to execute arbitrary web
script in the context of a victim's SquirrelMail session. (CVE-2010-4555)

An input sanitization flaw was found in the way SquirrelMail handled the
content of various HTML input fields. A remote attacker could use this
flaw to alter user preference values via a newline character contained in
the input for these fields. (CVE-2011-2752)

It was found that the SquirrelMail Empty Trash and Index Order pages did
not protect against Cross-Site Request Forgery (CSRF) attacks. If a remote
attacker could trick a user, who was logged into SquirrelMail, into
visiting a specially-crafted URL, the attacker could empty the victim's
trash folder or alter the ordering of the columns on the message index
page. (CVE-2011-2753)

SquirrelMail was allowed to be loaded into an HTML sub-frame, allowing a
remote attacker to perform a clickjacking attack against logged in users
and possibly gain access to sensitive user data. With this update, the
SquirrelMail main frame can only be loaded into the top most browser frame.
(CVE-2010-4554)

A flaw was found in the way SquirrelMail handled failed log in attempts. A
user preference file was created when attempting to log in with a password
containing an 8-bit character, even if the username was not valid. A
remote attacker could use this flaw to eventually consume all hard disk
space on the target SquirrelMail server. (CVE-2010-2813)

A flaw was found in the SquirrelMail Mail Fetch plug-in. If an
administrator enabled this plug-in, a SquirrelMail user could use this flaw
to port scan the local network the server was on. (CVE-2010-1637)

Users of SquirrelMail should upgrade to this updated package, which
contains backported patches to correct these issues.

Affected Software/OS:
squirrelmail on Red Hat Enterprise Linux (v. 5 server),
Red Hat Enterprise Linux AS version 4,
Red Hat Enterprise Linux ES version 4,
Red Hat Enterprise Linux WS version 4

Solution:
Please Install the Updated Packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-1637
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
BugTraq ID: 40291
http://www.securityfocus.com/bid/40291
BugTraq ID: 40307
http://www.securityfocus.com/bid/40307
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043239.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043258.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043261.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:120
http://conference.hitb.org/hitbsecconf2010dxb/materials/D1%20-%20Laurent%20Oudot%20-%20Improving%20the%20Stealthiness%20of%20Web%20Hacking.pdf#page=69
http://squirrelmail.svn.sourceforge.net/viewvc/squirrelmail/branches/SM-1_4-STABLE/squirrelmail/plugins/mail_fetch/functions.php?r1=13951&r2=13950&pathrev=13951
http://squirrelmail.svn.sourceforge.net/viewvc/squirrelmail/branches/SM-1_4-STABLE/squirrelmail/plugins/mail_fetch/options.php?r1=13951&r2=13950&pathrev=13951
http://www.openwall.com/lists/oss-security/2010/05/25/3
http://www.openwall.com/lists/oss-security/2010/05/25/9
http://www.openwall.com/lists/oss-security/2010/06/21/1
RedHat Security Advisories: RHSA-2012:0103
http://rhn.redhat.com/errata/RHSA-2012-0103.html
http://secunia.com/advisories/40307
http://www.vupen.com/english/advisories/2010/1535
http://www.vupen.com/english/advisories/2010/1536
http://www.vupen.com/english/advisories/2010/1554
Common Vulnerability Exposure (CVE) ID: CVE-2010-2813
BugTraq ID: 42399
http://www.securityfocus.com/bid/42399
Debian Security Information: DSA-2091 (Google Search)
http://www.debian.org/security/2010/dsa-2091
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045372.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045383.html
http://secunia.com/advisories/40964
http://secunia.com/advisories/40971
http://www.vupen.com/english/advisories/2010/2070
http://www.vupen.com/english/advisories/2010/2080
XForce ISS Database: squirrelmail-imap-dos(61124)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61124
Common Vulnerability Exposure (CVE) ID: CVE-2010-4554
Debian Security Information: DSA-2291 (Google Search)
http://www.debian.org/security/2011/dsa-2291
http://www.mandriva.com/security/advisories?name=MDVSA-2011:123
XForce ISS Database: squirrelmail-http-clickjacking(68512)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68512
Common Vulnerability Exposure (CVE) ID: CVE-2010-4555
XForce ISS Database: squirrelmail-dropdown-xss(68510)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68510
XForce ISS Database: squirrelmail-spellchecking-xss(68511)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68511
Common Vulnerability Exposure (CVE) ID: CVE-2011-2023
http://securitytracker.com/id?1025766
Common Vulnerability Exposure (CVE) ID: CVE-2011-2752
XForce ISS Database: squirrelmail-newline-crlf-injection(68587)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68587
Common Vulnerability Exposure (CVE) ID: CVE-2011-2753
XForce ISS Database: squirrelmail-authentication-csrf(68586)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68586
CopyrightCopyright (c) 2012 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.