oval:org.mitre.oval:def:1033

Definition Id: oval:org.mitre.oval:def:1033

Oval ID:	oval:org.mitre.oval:def:1033
Title:	SquirrelMail SQL Injection Vulnerability
Description:	SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0521	Version:	3
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	SquirrelMail
Definition Synopsis:
Software section Red Hat Enterprise 3 is installed AND squirrelmail rpm version prior to 1.4.3-0.e3.1 is installed AND php rpm is installed AND Configuration section httpd is listening on the network AND /etc/httpd/modules/libphp4.so exists