>> Gentoo Security Update Fixes Squirrelmail Cross Site Scripting Vulnerabilities
Title : Gentoo Security Update Fixes Squirrelmail Cross Site Scripting Vulnerabilities VUPEN ID : VUPEN/ADV-2006-0919 CVE ID : CVE-2006-0188 - CVE-2006-0195 - CVE-2006-0377
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2006-03-13
Technical Description
Gentoo has released updated packages to address multiple vulnerabilities identified in SquirrelMail. These flaws are due to input validation errors, which could be exploited by attackers to execute malicious scripting code or inject arbitrary IMAP commands. For additional information, see : VUPEN/ADV-2006-0689
