Advertisement
Home arrow ITsec Advisories arrow Horde "theme" Local File Inclusion Vulnerability
Friday, 25 July 2008
  
 
Last week attacks
O.S.  Defs.  %
Linux  5378  68.98%
Win 2003  1841  23.61%
Win 2000  290  3.72%
FreeBSD  166  2.13%
MacOSX  67  0.86%
Other  54  0.69%

Total attacks: 7796 of which 2243 single ip and 5553 mass defacements

Main Menu
Home
Digital Warfare
Geopolitics
ITsec News
ITsec Advisories
Test Drive
360°
Digital Attacks Archive
Zone-H events
Publications
Zone-H Friends/Partners
Contact Us
Search
Download Area
Zone-H forum
About this website
Login Form





Lost Password?
No account yet? Register
Visitors' Map
Horde "theme" Local File Inclusion Vulnerability PDF Print E-mail
User Rating: / 1
PoorBest 
Written by Marcelo Almeida (Vympel)   
Tuesday, 11 March 2008
A vulnerability has been reported in various Horde products, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system.

Input passed to the "theme" parameter is not properly sanitised before being used. This can be exploited to include arbitrary files from local resources, using directory traversal attacks and URL-encoded NULL bytes ("%00").

NOTE: Other attack vectors are also reported to exist...

Successful exploitation may allow execution of arbitrary code, but requires valid user credentials.

The vulnerability is confirmed in Horde Application Framework 3.1.6 and also reported in Horde Groupware 1.0.4 and Horde Groupware Webmail Edition 1.0.5. Prior versions may also be affected.

Solution:
Update to Horde Application Framework 3.1.7, Horde Groupware 1.0.5, or Horde Groupware Webmail Edition 1.0.6.

Provided and/or discovered by:
David Collins, Patrick Pelanne, and others from HostGator.com LLC support team

Original Advisory:
http://secunia.com/advisories/29286/

Horde:
http://lists.horde.org/archives/announce/2008/000382.html
http://lists.horde.org/archives/announce/2008/000383.html
http://lists.horde.org/archives/announce/2008/000384.html

HostGator:
http://seclists.org/bugtraq/2008/Mar/0074.html


Comments Index (Total Messages: 0)


Post Reply
Name:Guest
Title:
Comment:



Enter this security word

Powered by a Zone-H(ified) version of AkoComment 3.0!


DISCLAIMER: Forum postings are the opinion of the posting author alone, and should not be taken as the opinion of Zone-h. The   author is entirely and solely responsible for all content that he/she uploads, posts, or otherwise transmits via the website. Zone-h is not responsible for such content. However, Zone-h shall have the right, but not the obligation, to delete, move, or edit any content that violates this agreement or is otherwise objectionable as determined by Zone-h in its sole discretion and without notice.
 
< Prev   Next >
[ Back ]
 
Top!
© 2008 Zone-H.org
Joomla! is Free Software released under the GNU/GPL License.
 Top!