SquirrelMail Address Add Plugin Add.PHP Cross-Site Scripting Vulnerability

SquirrelMail Address Add Plugin Add.PHP Cross-Site Scripting Vulnerability

Solution:
Mandriva Linux has released security advisory MDKSA-2005:178 addressing this issue. Please see the referenced advisory for details.

The vendor has released version 2.1 to address this issue.

SquirrelMail SquirrelMail 1.4.2

Mandriva squirrelmail-1.4.2-11.2.C30mdk.noarch.rpm
Corporate 3.0/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3

Mandriva squirrelmail-1.4.2-11.2.C30mdk.noarch.rpm
Corporate 3.0:
http://www1.mandrivalinux.com/en/ftp.php3

Mandriva squirrelmail-poutils-1.4.2-11.2.C30mdk.noarch.rpm
Corporate 3.0:
http://www1.mandrivalinux.com/en/ftp.php3

Moritz Naumann SquirrelMail Address Add Plugin 1.9

SquirrelMail address_add-2.1-1.4.0.tar.gz
http://www.squirrelmail.org/plugins/address_add-2.1-1.4.0.tar.gz

Apple Mac OS X 10.3.9

Apple SecUpd2007-007Pan.dmg For Mac OS X v10.3.9
http://www.apple.com/support/downloads/

Apple Mac OS X Server 10.3.9

Apple SecUpdSrvr2007-007Pan.dmg For Mac OS X Server v10.3.9
http://www.apple.com/support/downloads/

Apple Mac OS X 10.4.10

Apple SecUpd2007-007Ti.dmg For Mac OS X v10.4.10 (PowerPC)
http://www.apple.com/support/downloads/

Apple SecUpd2007-007Univ.dmg For Mac OS X v10.4.10 (Universal)
http://www.apple.com/support/downloads/

Apple Mac OS X Server 10.4.10

Apple SecUpdSrvr2007-007Ti.dmg For Mac OS X Server v10.4.10 (PowerPC)
http://www.apple.com/support/downloads/

Apple SecUpdSrvr2007-007Universal.dmg For Mac OS X Server v10.4.10 (Universal)
http://www.apple.com/support/downloads/

Moritz Naumann SquirrelMail Address Add Plugin 2.0

SquirrelMail address_add-2.1-1.4.0.tar.gz
http://www.squirrelmail.org/plugins/address_add-2.1-1.4.0.tar.gz