CVE-2018-8741

moderate-risk

Published 2018-03-17

A directory traversal flaw in SquirrelMail 1.4.22 allows an authenticated attacker to exfiltrate (or potentially delete) files from the hosting server, related to ../ in the att_local_name field in Deliver.class.php.

Do I need to act?

1.7% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (3)

Squirrelmail

Debian Linux

Affected Vendors

Debian Squirrelmail

References (18)

Mailing List http://www.openwall.com/lists/oss-security/2018/03/17/2

Third Party Advisory http://www.securitytracker.com/id/1040554

Patch https://gist.github.com/hannob/3c4f86863c418930ad08853c1109364e

Patch https://insinuator.net/2018/03/squirrelmail-full-disclosure-troopers18/

Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00012.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://paste.pound-python.org/show/OjSLiFTxiBrTk63jqEUu/

Third Party Advisory https://www.debian.org/security/2018/dsa-4168

Mailing List http://www.openwall.com/lists/oss-security/2018/03/17/2

Third Party Advisory http://www.securitytracker.com/id/1040554

Patch https://gist.github.com/hannob/3c4f86863c418930ad08853c1109364e

Patch https://insinuator.net/2018/03/squirrelmail-full-disclosure-troopers18/

Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00012.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://paste.pound-python.org/show/OjSLiFTxiBrTk63jqEUu/

Third Party Advisory https://www.debian.org/security/2018/dsa-4168

/ 100

moderate-risk

Severity 30/34 · Critical

Exploitability 5/34 · Minimal

Exposure 9/34 · Low