Red Hat Security Advisory 2013-0126-01

newsbot

newsbot

RSS Feed
Red Hat Security Advisory 2013-0126-01 - SquirrelMail is a standards-based webmail package written in PHP. The SquirrelMail security update RHSA-2012:0103 did not, unlike the erratum text stated, correct the CVE-2010-2813 issue, a flaw in the way SquirrelMail handled failed log in attempts. A user preference file was created when attempting to log in with a password containing an 8-bit character, even if the username was not valid. A remote attacker could use this flaw to eventually consume all hard disk space on the target SquirrelMail server.

Weiterlesen...
 
Anmelden, um zu antworten.

Ähnliche Themen

Red Hat Security Advisory 2013-0132-01
Red Hat Security Advisory 2013-0132-01: Red Hat Security Advisory 2013-0132-01 - The autofs utility controls the operation of the automount daemon. The automount daemon automatically mounts and...

Red Hat Security Advisory 2013-0124-01
Red Hat Security Advisory 2013-0124-01: Red Hat Security Advisory 2013-0124-01 - These packages provide various libraries and tools for the Simple Network Management Protocol. An out-of-bounds...

Red Hat Security Advisory 2013-0129-01
Red Hat Security Advisory 2013-0129-01: Red Hat Security Advisory 2013-0129-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and...

Red Hat Security Advisory 2013-0131-01
Red Hat Security Advisory 2013-0131-01: Red Hat Security Advisory 2013-0131-01 - The gnome-vfs2 packages provide the GNOME Virtual File System, which is the foundation of the Nautilus file...

Red Hat Security Advisory 2013-0133-01
Red Hat Security Advisory 2013-0133-01: Red Hat Security Advisory 2013-0133-01 - Hewlett-Packard Linux Imaging and Printing provides drivers for Hewlett-Packard printers and multifunction...

Neueste Themen

Zurück
Oben