Your submission was sent successfully! Close

CVE-2011-2752

Published: 17 July 2011

CRLF injection vulnerability in SquirrelMail 1.4.21 and earlier allows remote attackers to modify or add preference values via a \n (newline) character, a different vulnerability than CVE-2010-4555.

Priority

Low

Status

Package Release Status
squirrelmail
Launchpad, Ubuntu, Debian
hardy Ignored
(reached end-of-life)
lucid Ignored
(reached end-of-life)
maverick Ignored
(reached end-of-life)
natty Ignored
(reached end-of-life)
oneiric Ignored
(reached end-of-life)
precise Not vulnerable
(2:1.4.22-1)
quantal Ignored
(reached end-of-life)
raring Ignored
(reached end-of-life)
saucy Ignored
(reached end-of-life)
trusty Does not exist
(trusty was not-affected [2:1.4.22-1])
upstream
Released (2:1.4.22-1)
utopic Ignored
(reached end-of-life)
vivid Does not exist

wily Ignored
(reached end-of-life)
xenial Not vulnerable
(2:1.4.22-1)
yakkety Not vulnerable
(2:1.4.22-1)
zesty Does not exist