CVE Vulnerabilities

CVE-2005-0104

Published: Jan 29, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via certain integer variables.

Affected Software

Name Vendor Start Version End Version
Squirrelmail Squirrelmail 1.0.4 1.0.4
Squirrelmail Squirrelmail 1.0.5 1.0.5
Squirrelmail Squirrelmail 1.2.0 1.2.0
Squirrelmail Squirrelmail 1.2.1 1.2.1
Squirrelmail Squirrelmail 1.2.2 1.2.2
Squirrelmail Squirrelmail 1.2.3 1.2.3
Squirrelmail Squirrelmail 1.2.4 1.2.4
Squirrelmail Squirrelmail 1.2.5 1.2.5
Squirrelmail Squirrelmail 1.2.6 1.2.6
Squirrelmail Squirrelmail 1.2.7 1.2.7
Squirrelmail Squirrelmail 1.2.8 1.2.8
Squirrelmail Squirrelmail 1.2.9 1.2.9
Squirrelmail Squirrelmail 1.2.10 1.2.10
Squirrelmail Squirrelmail 1.2.11 1.2.11
Squirrelmail Squirrelmail 1.4 1.4
Squirrelmail Squirrelmail 1.4.0 1.4.0
Squirrelmail Squirrelmail 1.4.1 1.4.1
Squirrelmail Squirrelmail 1.4.2 1.4.2
Squirrelmail Squirrelmail 1.4.3 1.4.3
Squirrelmail Squirrelmail 1.4.3_rc1 1.4.3_rc1
Squirrelmail Squirrelmail 1.4.3a 1.4.3a
Squirrelmail Squirrelmail 1.44 1.44
Red Hat Enterprise Linux 3 RedHat squirrelmail-0:1.4.3a-9.EL3 *
Red Hat Enterprise Linux 4 RedHat squirrelmail-0:1.4.3a-9.EL4 *
Squirrelmail Ubuntu dapper *
Squirrelmail Ubuntu devel *
Squirrelmail Ubuntu edgy *
Squirrelmail Ubuntu feisty *

References