In the last days there have been a few reports about more.groupware (from release 0.7.0) containing the HTML/CrashIE.B trojan. The infected file is example.1.html in the webmail2 module, according to virus scanners.
This module does, contrary to what virus scanners say, NOT really contain the mentioned trojan. The detection is triggered by strings resembling the trojan's signature instead; and the mentioned file is never called in the application.
You might also want to have a look at a support request about this issue: http://sourceforge.net/tracker/index.php?func=detail&aid=1025572&group_id=32034&atid=404019
Nonetheless we have removed the file from the CVS a few days ago. Thus it is not contained in the daily CVS snapshots any longer and will not be in the next release.
We apologize for any inconvenience and worries this may have caused.
The more.groupware development team