CVE-2006-4019
Published: 11 August 2006
Dynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote attackers to overwrite arbitrary program variables and read or write the attachments and preferences of other users.
Priority
Status
Package | Release | Status |
---|---|---|
squirrelmail Launchpad, Ubuntu, Debian |
dapper |
Released
(1.4.6-1ubuntu0.1)
|
edgy |
Released
(1.4.8-1ubuntu0.1)
|
|
feisty |
Released
(1.4.9a-1ubuntu0.1)
|
|
upstream |
Needs triage
|
|
gutsy |
Released
(1.4.10a-2)
|