This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing a security update.
Several HTML filtering bugs were discovered in SquirrelMail. An
scripting attacks by sending an e-mail viewed by a user within
Squirrelmail did not sufficiently check arguments to IMG tags in HTML
e-mail messages. This could be exploited by an attacker by sending
arbitrary e-mail messages on behalf of a squirrelmail user tricked
into opening a maliciously crafted HTML e-mail message.
See also :
Update the affected squirrelmail package.
Risk factor :
Medium / CVSS Base Score : 5.0