A maintainer account has been compromised, and malicious code inserted into versions 1.4.11 and 1.4.12 of the Squirrelmail webmail software.
Contrary to Squirrelmail’s initial statement that the changes should have little to no impact, current information indicates that a remote user could execute code on a victim server.
Webmail operators running a vulnerable Squirrelmail version should upgrade to version 1.4.13, as well as check their systems for signs of compromise.
Do you know of cases where Squirrelmail systems have been compromised? Please post your comments!
External links:
- Squirrelmail
- “Compromised SquirrelMail packages discovered” (Heise Security)
Post a Comment