Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12086
HistoryApr 05, 2006 - 12:00 a.m.

[ GLSA 200604-02 ] Horde Application Framework: Remote code execution

2006-04-0500:00:00
vulners.com
37
JSON

Gentoo Linux Security Advisory GLSA 200604-02

                                        http://security.gentoo.org/

Severity: High
Title: Horde Application Framework: Remote code execution
Date: April 04, 2006
Bugs: #127889, #126435
ID: 200604-02

Synopsis

The help viewer of the Horde Framework allows attackers to execute
arbitrary remote code.

Background

The Horde Application Framework is a general-purpose web application
framework written in PHP, providing classes for handling preferences,
compression, browser detection, connection tracking, MIME and more.

Affected packages

-------------------------------------------------------------------
 Package         /  Vulnerable  /                       Unaffected
-------------------------------------------------------------------

1 www-apps/horde < 3.1.1 >= 3.1.1

Description

Jan Schneider of the Horde team discovered a vulnerability in the help
viewer of the Horde Application Framework that could allow remote code
execution (CVE-2006-1491). Paul Craig reported that "services/go.php"
fails to validate the passed URL parameter correctly (CVE-2006-1260).

Impact

An attacker could exploit the vulnerability in the help viewer to
execute arbitrary code with the privileges of the web server user. By
embedding a NULL character in the URL parameter, an attacker could
exploit the input validation issue in go.php to read arbitrary files.

Workaround

There are no known workarounds at this time.

Resolution

All Horde Application Framework users should upgrade to the latest
version:

# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=www-apps/horde-3.1.1&quot;

References

[ 1 ] CVE-2006-1260
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1260
[ 2 ] CVE-2006-1491
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1491
[ 3 ] Horde Announcement
http://lists.horde.org/archives/announce/2006/000271.html

Availability

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200604-02.xml

Concerns?

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
[email protected] or alternatively, you may file a bug at
http://bugs.gentoo.org.

License

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

Related

openvas 10
nessus 6
debian 2
gentoo 1
osv 2
cve 2
prion 2
ubuntucve 2
checkpoint_advisories 1
freebsd 1
canvas 1
openvas
openvas
Gentoo Security Advisory GLSA 200604-02 (horde)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1034-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1034-1 (horde2)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-1034-1 : horde2 - several vulnerabilities
2006-10-14 00:00:00
GLSA-200604-02 : Horde Application Framework: Remote code execution
2006-04-08 00:00:00
Debian DSA-1033-1 : horde3 - several vulnerabilities
2006-10-14 00:00:00
debian
debian
[SECURITY] [DSA 1034-1] New horde2 packages fix several vulnerabilities
2006-04-14 14:42:44
[SECURITY] [DSA 1033-1] New horde3 packages fix several vulnerabilities
2006-04-12 19:03:35
gentoo
gentoo
Horde Application Framework: Remote code execution
2006-04-04 00:00:00
osv
osv
horde2 - several vulnerabilities
2006-04-14 00:00:00
horde3 - several vulnerabilities
2006-04-12 00:00:00
cve
cve
CVE-2006-1260
2006-03-19 02:02:00
CVE-2006-1491
2006-03-29 22:02:00
prion
prion
Code injection
2006-03-19 02:02:00
Design/Logic Flaw
2006-03-29 22:02:00
ubuntucve
ubuntucve
CVE-2006-1260
2006-03-19 00:00:00
CVE-2006-1491
2006-03-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Horde Help Viewer Vulnerability
2006-07-05 00:00:00
freebsd
freebsd
horde -- remote code execution vulnerability in the help viewer
2006-03-28 00:00:00
canvas
canvas
Immunity Canvas: HORDE_EVAL
2006-03-29 22:02:00
JSON
Related for SECURITYVULNS:DOC:12086
openvas10nessus6debian2gentoo1osv2cve2prion2ubuntucve2checkpoint_advisories1freebsd1canvas1