[imp] Fwd: PCL-0001: Remote Vulnerability in HORDE MTA < 2.2.4

Jan Schneider jan at horde.org
Thu Aug 14 04:23:08 PDT 2003


Zitat von AJ <aj at mindcrash.com>:

> Agreed.    I just want to confirm this is not present in HEAD.  Anyone?

This is in HEAD as it will be in 2.2.4 as it is in every other PHP
application I know that has links to outside of the application and uses
PHP sessions without forcing to use cookies.

> At 03:46 PM 8/13/2003 -0700, Lord Apollyon wrote:
> > >  From bugtraq....
> >
> >*SIGH* What happened to the disclosure of vulnerabilities to the authors
> of
> >a product first, and THEN to Bugtraq?
> >
> >By "horde MTA" I'm assuming he's meaning a specific module within
> IMP/HORDE?
> >  Horde/IMP's not an MTA, it makes use of one.  Horde/IMP is an ** MUA
> **.

Jan.

--
http://www.horde.org - The Horde Project
http://www.ammma.de - discover your knowledge
http://www.tip4all.de - Deine private Tippgemeinschaft


More information about the imp mailing list