[imp] SQL injection vulnerability in IMP? (fwd)

Chuck Hagenbuch chuck at horde.org
Thu Jan 2 22:48:18 PST 2003


2.2.x is officially deprecated/unsupported. This does not apply to 3.x.

----- Forwarded message from jouko at solutions.fi -----
    Date: Thu, 2 Jan 2003 18:10:55 +0200 (EET)
    From: Jouko Pynnonen <jouko at solutions.fi>
Reply-To: Jouko Pynnonen <jouko at solutions.fi>
 Subject: SQL injection vulnerability in IMP? (fwd)
      To: chuck at horde.org



Hello, I sent a bug report in December and haven't got any reply. I 
forwarded it again just to make sure someone reads it... it's a security 
bug. See the attachment.


---------- Forwarded message ----------
Date: Sat, 28 Dec 2002 16:41:22 -0800
From: imp-owner at lists.horde.org
To: jouko at solutions.fi
Subject: SQL injection vulnerability in IMP?

You are not allowed to post to this mailing list, and your message has
been automatically rejected.  If you think that your messages are
being rejected in error, contact the mailing list owner at
imp-owner at lists.horde.org.


----- End forwarded message -----


-chuck

--
Charles Hagenbuch, <chuck at horde.org>
"People ask me all the time what it will be like living without otters."
 - Google, thanks to Harpers-------------- next part --------------
An embedded message was scrubbed...
From: Jouko Pynnonen <jouko at solutions.fi>
Subject: SQL injection vulnerability in IMP?
Date: Sun, 29 Dec 2002 02:38:49 +0200 (EET)
Size: 3060
Url: http://lists.horde.org/archives/imp/attachments/20030102/05050182/attachment.eml


More information about the imp mailing list