Scientific Linux Security Update : squirrelmail on SL5.x, SL4.x, SL3.x i386/x86_64
Medium Nessus Plugin ID 60185
SynopsisThe remote Scientific Linux host is missing a security update.
Squirrelmail did not sufficiently check arguments to IMG tags in HTML e-mail messages. This could be exploited by an attacker by sending arbitrary e-mail messages on behalf of a squirrelmail user tricked into opening a maliciously crafted HTML e-mail message.
SolutionUpdate the affected squirrelmail package.