Debian Security Advisory DSA 700-1 (mailreader) Network Vulnerability

Summary

The remote host is missing an update to mailreader announced via advisory DSA 700-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20700-1

Insight

Ulf Härnhammar from the Debian Security Audit Project discovered a cross-site scripting problem in mailreader, a simple, but powerful WWW mail reader system, when displaying messages of the MIME types text/enriched or text/richtext. For the stable distribution (woody) this problem has been fixed in version 2.3.29-5woody2. For the unstable distribution (sid) this problem has been fixed in version 2.3.29-11. We recommend that you upgrade your mailreader package.

Severity

Classification

CVE CVE-2005-0386
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Debian Security Advisory DSA 1135-1 (libtunepimp)
Debian Security Advisory DSA 1054-1 (tiff)
Debian Security Advisory DSA 1090-1 (spamassassin)
Debian Security Advisory DSA 104-1 (cipe)
Debian Security Advisory DSA 1115-1 (gnupg2)

Take action and discover your vulnerabilities