CVE-2007-1262

Impact:
Moderate
Public Date:
2007-05-09
CWE:
CWE-79
Bugzilla:
239647: CVE-2007-1262 XSS through HTML message in squirrelmail

The MITRE CVE dictionary describes this issue as:

Multiple cross-site scripting (XSS) vulnerabilities in the HTML filter in SquirrelMail 1.4.0 through 1.4.9a allow remote attackers to inject arbitrary web script or HTML via the (1) data: URI in an HTML e-mail attachment or (2) various non-ASCII character sets that are not properly filtered when viewed with Microsoft Internet Explorer.

Find out more about CVE-2007-1262 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (squirrelmail) RHSA-2007:0358 2007-05-17
Red Hat Enterprise Linux 5 (squirrelmail) RHSA-2007:0358 2007-05-17
Red Hat Enterprise Linux 4 (squirrelmail) RHSA-2007:0358 2007-05-17

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.