SquirrelMail Insecure Cookie Disclosure Weakness

Bugtraq ID: 31321
Class: Design Error
CVE: CVE-2008-3663
Remote: Yes
Local: No
Published: Sep 23 2008 12:00AM
Updated: Apr 13 2015 10:20PM
Credit: Hanno Boeck
Vulnerable: SuSE SUSE Linux Enterprise Server 9
SuSE SUSE Linux Enterprise Server 10
SquirrelMail SquirrelMail 1.4.15
Redhat Enterprise Linux WS 4
Redhat Enterprise Linux WS 3
Redhat Enterprise Linux ES 4
Redhat Enterprise Linux ES 3
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux AS 4
Redhat Enterprise Linux AS 3
Redhat Enterprise Linux Desktop version 4
Redhat Enterprise Linux 5 Server
Redhat Desktop 3.0
NaSMail NaSMail 0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Not Vulnerable: NaSMail NaSMail 1.6


 

Privacy Statement
Copyright 2010, SecurityFocus