Oval Definition:	oval:org.mitre.oval:def:22626
Revision Date: 2014-05-26 Version: 24 Title: ELSA-2009:1066: squirrelmail security update (Important) Description: functions/mime.php in SquirrelMail before 1.4.18 does not protect the application's content from Cascading Style Sheets (CSS) positioning in HTML e-mail messages, which allows remote attackers to spoof the user interface, and conduct cross-site scripting (XSS) and phishing attacks, via a crafted message. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-1578 CVE-2009-1579 CVE-2009-1581 ELSA-2009:1066-01 Platform(s): Oracle Linux 5 Product(s): squirrelmail Definition Synopsis Oracle Linux 5.x AND squirrelmail is earlier than 0:1.4.8-5.el5_3.7
BACK