You are here

CVE-2006-0377

Vincent (CVE) Danen's picture
CRLF injection vulnerability in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select command, aka "IMAP injection."

Details Source

Mitre

Public Date

2006-02-15 00:00:00

Impact

Moderate

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 RHSA-2006:0283 2006-05-03
Red Hat Enterprise Linux 4 RHSA-2006:0283 2006-05-03