Create an account

Subscribe to LWN

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

LWN.net Weekly Edition for November 20, 2008

MinGW and why Linux users should care

LWN.net Weekly Edition for November 13, 2008

NLUUG/ELCE: Embedded devices and free software

The sad story of the em28xx driver

Weekly edition	Kernel	Security	Distributions	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ

courier: missing input sanitizing

Package(s):

courier

CVE #(s):

CAN-2005-2724

Created:

September 1, 2005

Updated:

September 6, 2005

Description:

The courier sqwebmail application has an input sanitizing vulnerability that can be exploited by a remote attacker for the purpose of causing a script insertion attack.

Alerts:

Debian

2005-09-01

(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds