Oval Definition:
oval:org.opensuse.security:def:20060377
Revision Date
:
2015-11-16
Version
:
1
Title
:
CVE-2006-0377
Description
:
CRLF injection vulnerability in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select command, aka "IMAP injection."
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2006-0377
Platform(s)
:
SUSE LINUX 10.0
SUSE LINUX 9.1 for IA32
SUSE LINUX 9.1 for x86-64
SUSE LINUX 9.2
SUSE LINUX 9.3
Product(s)
:
Definition Synopsis
Release Information
suse100 is installed
AND
squirrelmail less than 1.4.5-5.2
OR
Package Information
suse91 is installed
AND
squirrelmail less than 1.4.2-55.14
OR
Package Information
suse92 is installed
AND
squirrelmail less than 1.4.2-59.12
OR
Package Information
suse93 is installed
AND
squirrelmail less than 1.4.2-64.9
BACK