PT-2005-1253 · Squirrelmail · Squirrelmail

Grant Hollingworth

·

Published

2005-02-02

·

Updated

2008-09-05

·

CVE-2005-0152

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Squirrelmail version 1.2.6
Description The issue allows remote attackers to execute arbitrary code via URL manipulation.
Recommendations For Squirrelmail version 1.2.6, update to a version that fixes the remote file inclusion vulnerability.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0152
DSA-662-1

Affected Products

Squirrelmail