FreeBSD : squirrelmail -- plugin.php local file inclusion vulnerability (00784d6e-f4ce-11da-87a1-000c6ec775d9)
High Nessus Plugin ID 21646
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionThe SquirrelMail Project Team reports :
A security issue has been uncovered in functions/plugin.php that could allow a remote user to access local files on the server without requiring login. This issue manifests itself if register_globals is enabled, and magic_quotes_gpc is disabled.
SolutionUpdate the affected package.