Bug 239649 - CVE-2007-1262 XSS through HTML message in squirrelmail
Summary: CVE-2007-1262 XSS through HTML message in squirrelmail
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: squirrelmail
Version: 5.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
: ---
Assignee: Martin Bacovsky
QA Contact:
URL: http://www.squirrelmail.org/security/...
Whiteboard: impact=moderate,source=internet,publi...
Depends On: 239648
Blocks: CVE-2007-1262
TreeView+ depends on / blocked
 
Reported: 2007-05-10 09:32 UTC by Mark J. Cox
Modified: 2007-11-30 22:07 UTC (History)
1 user (show)

Fixed In Version: 5.1.0
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2007-08-13 16:13:14 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Mark J. Cox 2007-05-10 09:32:51 UTC 
Tracking bug for this issue affecting 5.1; see "blocks" bug for details.
Comment 2 Martin Bacovsky 2007-05-10 16:34:23 UTC 
This issue should be fixed in squirrelmail-1.4.8-4.1.el5.
Note You need to log in before you can comment on or make changes to this bug.