Definition

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

oval:org.mitre.oval:def:9764

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

Family:

unix

Status:

ACCEPTED

Platform(s):

Oracle Linux 5
Oracle Linux 4
Red Hat Enterprise Linux 3
CentOS Linux 3
CentOS Linux 4
CentOS Linux 5
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 4

Class:

vulnerability

Reference(s):

CVE-2008-2379

Product(s):