SquirrelMail Insecure Cookie Disclosure Weakness

Bugtraq ID:	31321
Class:	Design Error
CVE:	CVE-2008-3663
Remote:	Yes
Local:	No
Published:	Sep 23 2008 12:00AM
Updated:	Feb 24 2009 11:07PM
Credit:	Hanno Boeck
Vulnerable:	SuSE SLES 9 SuSE SLES 10 SquirrelMail SquirrelMail 1.4.15 RedHat Fedora 9 0 RedHat Fedora 8 0 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux Desktop version 4 RedHat Enterprise Linux 5 server RedHat Desktop 3.0 NaSMail NaSMail 0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 4.0

Not Vulnerable:	NaSMail NaSMail 1.6