openSUSE 10 Security Update : squirrelmail (squirrelmail-3629)
Medium Nessus Plugin ID 27457
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update of squirrelmail fixes two cross-site-scripting vulnerabilities that can be used by an attacker to read opened emails (CVE-2007-1262) and to send email on behalf of the user (CVE-2007-2589).
SolutionUpdate the affected squirrelmail package.