SquirrelMail: IMAP commands injection attempt
Description
Using a specially crafted mailbox parameter, an attacker could execute IMAP commands on the server.
Default
configuration
Profiles
High
Medium
Low
Internet
Action
Block
Block
Block
Block
Alarm Level
Major
Minor
Minor
Major
References
URL:
http://www.frsirt.com/english/advisories/2006/0689
Available since
ASQ v3.2.0
Protects
SquirrelMail Multiple Cross Site Scripting and IMAP Injection Vulnerabilities
100 last CVE
CVE-2006-0377
CVE-2006-0195
CVE-2006-0188
Risk level
Moderate
