PublicDate: 2005-03-01 05:00:00 UTC
Candidate: CVE-2004-1036
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1036
Description:
 Cross-site scripting (XSS) vulnerability in the decoding of encoded text in
 certain headers in mime.php for SquirrelMail 1.4.3a and earlier, and
 1.5.1-cvs before 23rd October 2004, allows remote attackers to execute
 arbitrary web script or HTML.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_squirrelmail: released (1.4.6-1ubuntu0.1)
edgy_squirrelmail: released (1.4.8-1ubuntu0.1)
feisty_squirrelmail: released (1.4.9a-1ubuntu0.1)
devel_squirrelmail: released (1.4.10a-2)
upstream_squirrelmail: needs-triage