SquirrelMail Insecure Cookie Disclosure Weakness

Bugtraq ID: 31321
Class: Design Error
CVE: CVE-2008-3663
Remote: Yes
Local: No
Published: Sep 23 2008 12:00AM
Updated: Feb 24 2009 11:07PM
Credit: Hanno Boeck
Vulnerable: SuSE SUSE Linux Enterprise Server 9
SuSE SUSE Linux Enterprise Server 10
SquirrelMail SquirrelMail 1.4.15
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux Desktop Workstation 5 client
RedHat Enterprise Linux Desktop version 4
RedHat Desktop 3.0
Red Hat Fedora 9
Red Hat Fedora 8
Red Hat Enterprise Linux AS 4
Red Hat Enterprise Linux AS 3
Red Hat Enterprise Linux 5 Server
NaSMail NaSMail 0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Not Vulnerable: NaSMail NaSMail 1.6


 

Privacy Statement
Copyright 2010, SecurityFocus