Results 1 to 2 of 2

Thread: Squirrelmail Vulnerability 1.4.22

  1. #1
    Join Date
    Sep 2013
    Posts
    9

    Squirrelmail Vulnerability 1.4.22

    Is this also on DA a problem?

    See: http://cve.mitre.org/cgi-bin/cvename...=CVE-2017-7692

  2. #2
    Join Date
    Aug 2006
    Location
    LT, EU
    Posts
    7,181
    Quote: "As a temporary solution users can switch to SMTP based transport (as opposed to Sendmail)."

    Vulnerability does only seem to affect SquirrelMail installations having "$useSendmail = true;" set in their configuration, which is not a default for SquirrelMail installed by DirectAdmin. So, vulnerability shouldn't affect SquirrelMail installations on DA servers.
    Martynas Bendorius
    MB Martynas IT. Professional server management company. Official DirectAdmin, CloudLinux, LiteSpeed and Comodo partners.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •