Public Date:

The MITRE CVE dictionary describes this issue as:

Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" and "*/" comments, or (2) a newline in a "url" specifier, which is processed by certain web browsers including Internet Explorer.

Find out more about CVE-2006-0195 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux version 3 (squirrelmail) RHSA-2006:0283 2006-05-03
Red Hat Enterprise Linux version 4 (squirrelmail) RHSA-2006:0283 2006-05-03