[imp] IMP XSS bug (delete other people's mail etc)
Chuck Hagenbuch
chuck at horde.org
Mon Jul 28 20:11:19 PDT 2003
Quoting Ulf Harnhammar <ulfh at update.uu.se>:
> I've found a Cross-Site Scripting (XSS) bug in IMP 3.2.1 and some earlier
> versions. Any person who sends an HTML e-mail to any IMP user may execute
> JavaScript code in the IMP user's name with these constructions:
>
> <body onLoad = "alert(57)">
> <body style="width: expression(alert(57))">
> (the last one "only" works on IE)
>
> I've attached a quick patch that should fix this issue.
Committed, thanks! We'll try and get 3.2.2 out the door quickly.
-chuck
--
Charles Hagenbuch, <chuck at horde.org>
They're just looking at a wall of meat.
More information about the imp
mailing list