SEARCH RESULTS
 
Showing 1-3 of 3 records
1
 
Expand article

Security World: Latest SquirrelMail download compromised

2007-12-14 18:02:20 by Editor in Help Net Security - News
 
The latest package of SquirrelMail webmail application was compromised. Here is a statement from the SquirrelMail developers: It has been brought to our attention that the MD5 sums for the 1.4.12 p
 
Tags: squirrelmail webmail application, md5 sums, squirrelmail developers, attention, statement, package
 
 
 
 
Expand article

Security World: SquirrelMail compromise risk elevated to high

2007-12-17 22:44:44 by Editor in Help Net Security - News
 
We mentioned on Friday that the SquirrelMail download packages were compromised. Although the first statement said that "modifications to the code should have little to no impact at this time" it look
 
Tags: squirrelmail download packages, statement, time, friday, modifications, impact, code
 
 
 
 
Expand article

Squirreling Backdoors Into Distribution Points

2007-12-19 22:16:35 by Chris Eng in Zero in a bit
 
...SquirrelMail 1.4.11 and 1.4.12 were recently backdoored. Similar to some high-profile backdoors in the past, this was done by modifying the distribution tarball on rather than infiltrating the source code repository [1] . In this case, the backdoor was detected when a user noticed that the MD5 published on SquirrelMails website didnt match...
 
Tags: md5 collisions, md5, md5 hashes, distribution, php, execute php code, execute, code, md5 unsafe
 
 
 
 
 
Showing 1-3 of 3 records
1
 
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia