CVE-2006-6142

Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.9 allow remote attackers to inject arbitrary web script or HTML via the (1) mailto parameter in (a) webmail.php, the (2) session and (3) delete_draft parameters in (b) compose.php, and (4) unspecified vectors involving "a shortcoming in the magicHTML filter."

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://sourceforge.net/project/shownotes.php?release_id=468482
http://squirrelmail.org/security/issue/2006-12-02
http://www.securityfocus.com/bid/21414
http://securitytracker.com/id?1017327
http://secunia.com/advisories/23195
https://issues.rpath.com/browse/RPL-849
http://secunia.com/advisories/23322
http://www.novell.com/linux/security/advisories/2006_29_sr.html
http://secunia.com/advisories/23409
http://www.debian.org/security/2006/dsa-1241
http://secunia.com/advisories/23504
http://fedoranews.org/cms/node/2438
http://fedoranews.org/cms/node/2439
http://www.redhat.com/support/errata/RHSA-2007-0022.html
http://secunia.com/advisories/23811
http://secunia.com/advisories/24004
http://www.novell.com/linux/security/advisories/2007_4_sr.html
http://docs.info.apple.com/article.html?artnum=306172
http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:226
ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
http://www.securityfocus.com/bid/25159
http://secunia.com/advisories/24284
http://secunia.com/advisories/26235
http://www.vupen.com/english/advisories/2007/2732
http://www.vupen.com/english/advisories/2006/4828
https://exchange.xforce.ibmcloud.com/vulnerabilities/30695
https://exchange.xforce.ibmcloud.com/vulnerabilities/30694
https://exchange.xforce.ibmcloud.com/vulnerabilities/30693
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9988

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:squirrelmail:squirrelmail:1.4:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.1:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.4_rc1:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.5:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.3aa:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.4:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4_rc1:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.2:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.3:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.6:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.6_cvs:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.6_rc1:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_r3:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.7:::::::*
	cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_rc1:::::::*

Information

Published : 2006-12-05 03:28

Updated : 2017-10-10 18:31

NVD link : CVE-2006-6142

Mitre link : CVE-2006-6142

JSON object : View

CWE

NVD-CWE-Other

Products Affected

squirrelmail

squirrelmail

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://sourceforge.net/project/shownotes.php?release_id=468482", "name": "http://sourceforge.net/project/shownotes.php?release_id=468482", "tags": [], "refsource": "CONFIRM"}, {"url": "http://squirrelmail.org/security/issue/2006-12-02", "name": "http://squirrelmail.org/security/issue/2006-12-02", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/21414", "name": "21414", "tags": [], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1017327", "name": "1017327", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/23195", "name": "23195", "tags": [], "refsource": "SECUNIA"}, {"url": "https://issues.rpath.com/browse/RPL-849", "name": "https://issues.rpath.com/browse/RPL-849", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/23322", "name": "23322", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.novell.com/linux/security/advisories/2006_29_sr.html", "name": "SUSE-SR:2006:029", "tags": [], "refsource": "SUSE"}, {"url": "http://secunia.com/advisories/23409", "name": "23409", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2006/dsa-1241", "name": "DSA-1241", "tags": [], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/23504", "name": "23504", "tags": [], "refsource": "SECUNIA"}, {"url": "http://fedoranews.org/cms/node/2438", "name": "FEDORA-2007-088", "tags": [], "refsource": "FEDORA"}, {"url": "http://fedoranews.org/cms/node/2439", "name": "FEDORA-2007-089", "tags": [], "refsource": "FEDORA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2007-0022.html", "name": "RHSA-2007:0022", "tags": [], "refsource": "REDHAT"}, {"url": "http://secunia.com/advisories/23811", "name": "23811", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/24004", "name": "24004", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.novell.com/linux/security/advisories/2007_4_sr.html", "name": "SUSE-SR:2007:004", "tags": [], "refsource": "SUSE"}, {"url": "http://docs.info.apple.com/article.html?artnum=306172", "name": "http://docs.info.apple.com/article.html?artnum=306172", "tags": [], "refsource": "CONFIRM"}, {"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html", "name": "APPLE-SA-2007-07-31", "tags": [], "refsource": "APPLE"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:226", "name": "MDKSA-2006:226", "tags": [], "refsource": "MANDRIVA"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc", "name": "20070201-01-P", "tags": [], "refsource": "SGI"}, {"url": "http://www.securityfocus.com/bid/25159", "name": "25159", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/24284", "name": "24284", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26235", "name": "26235", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2007/2732", "name": "ADV-2007-2732", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2006/4828", "name": "ADV-2006-4828", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30695", "name": "squirrelmail-mimeheader-xss(30695)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30694", "name": "squirrelmail-magichtml-messages-xss(30694)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30693", "name": "squirrelmail-webmail-compose-xss(30693)", "tags": [], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9988", "name": "oval:org.mitre.oval:def:9988", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.9 allow remote attackers to inject arbitrary web script or HTML via the (1) mailto parameter in (a) webmail.php, the (2) session and (3) delete_draft parameters in (b) compose.php, and (4) unspecified vectors involving \"a shortcoming in the magicHTML filter.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-6142", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-12-05T11:28Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.4_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.3aa:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.6_cvs:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.6_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_r3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-10-11T01:31Z"}

6.8 /10