Red Hat Customer Portal

Skip to main content

CVE-2006-0195

Impact:
Moderate
Public Date:
2006-02-10

The MITRE CVE dictionary describes this issue as:

Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" and "*/" comments, or (2) a newline in a "url" specifier, which is processed by certain web browsers including Internet Explorer.

Find out more about CVE-2006-0195 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 RHSA-2006:0283 2006-05-03
Red Hat Enterprise Linux 4 RHSA-2006:0283 2006-05-03

Last Modified