CVE-2010-1637
MEDIUM severity · CVSS 6.5 · Server-side request forgery (SSRF)
6.5CVSS MEDIUM
Summary
The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges requiredLow
User interactionNone
Confidentiality impactHigh
Integrity impactNone
Availability impactNone
Exploit probability (EPSS)3%
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.
Official patch: http://squirrelmail.org/security/issue/2010-06-21 ↗
Additional information
- NVD record
- http://squirrelmail.org/security/issue/2010-06-21Patch
- http://conference.hitb.org/hitbsecconf2010dxb/materials/D1%20-%20Laurent%20Oudot%20-%20Improving%20the%20Stealthiness%20of%20Web%20Hacking.pdf#page=69
- http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043239.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043258.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043261.html
- http://rhn.redhat.com/errata/RHSA-2012-0103.htmlAdvisory
- http://secunia.com/advisories/40307