SquirrelMail Unauthorized Source Code Modification Package Compromise Vulnerability

info
discussion
exploit
solution
references

SquirrelMail Unauthorized Source Code Modification Package Compromise Vulnerability

SquirrelMail is prone to a security vulnerability because the vendor's source code was compromised.

An attacker may be able to exploit this issue to execute arbitrary code within the context of the webserver process.

This issue affects SquirrelMail 1.4.11 and 1.4.12.