Mandriva Linux Security Advisory – A vulnerability in the way that SquirrelMail handled the $_POST variables was discovered. If a user was tricked into visiting a malicious URL, the user’s SquirrelMail preferences could be read or modified. This vulnerability is corrected in SquirrelMail 1.4.5 and the updated packages provide the latest stable version.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/41120/MDKSA-2005-202.txt
Source: https://packetstormsecurity.com/files/41120/Mandriva-Linux-Security-Advisory-2005.202.html