CVE Vulnerabilities

CVE-2004-0591

Published: Aug 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in the print_header_uc function for SqWebMail 4.0.4 and earlier, and possibly 3.x, allows remote attackers to inject arbitrary web script or HRML via (1) e-mail headers or (2) a message with a message/delivery-status MIME Content-Type.

Affected Software

Name Vendor Start Version End Version
Sqwebmail Inter7 4.0.4 4.0.4
Courier Ubuntu dapper *
Courier Ubuntu devel *
Courier Ubuntu edgy *
Courier Ubuntu feisty *

References