Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
BID:22975
Info
Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 22975 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1515 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 15 2007 12:00AM |
| Updated: | May 12 2015 07:33PM |
| Credit: | Immerda Project Group and Moritz Naumann are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Horde Project IMP 4.0.4 Horde Project IMP 4.0.3 Horde Project IMP 4.0.2 Horde Project IMP 4.0.1 Horde Project IMP 4.0 Horde Project IMP 3.2.5 Horde Project IMP 3.2.4 Horde Project IMP 3.2.3 Horde Project IMP 3.2.2 Horde Project IMP 3.2.1 Horde Project IMP 3.2 Horde Project IMP 3.1.2 Horde Project IMP 3.1 Horde Project IMP 3.0 Horde Project IMP 2.3 Horde Project IMP 2.2.8 Horde Project IMP 2.2.7 Horde Project IMP 2.2.6 Horde Project IMP 2.2.5 Horde Project IMP 2.2.4 Horde Project IMP 2.2.3 Horde Project IMP 2.2.2 Horde Project IMP 2.2.1 Horde Project IMP 2.2 Horde Project IMP 2.0 |
| Not Vulnerable: |
Horde Project IMP 4.1.4 |
Discussion
Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
Horde IMP Webmail Client is prone to multiple input-validation vulnerabilities, including cross-site scripting and an HTML-injection issue, because the application fails to properly sanitize user-supplied input.
Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.
Horde IMP Webmail Client is prone to multiple input-validation vulnerabilities, including cross-site scripting and an HTML-injection issue, because the application fails to properly sanitize user-supplied input.
Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.
Exploit / POC
Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
To exploit an HTML-injection vulnerabilities, an attacker can use a browser.
To exploit a cross-site scripting vulnerability, an attacker must entice an unsuspecting victim into following a malicious URI.
The following proof-of-concept URI is available:
http://www.example.com/horde/imp/search.php?edit_query=[xss]
To exploit an HTML-injection vulnerabilities, an attacker can use a browser.
To exploit a cross-site scripting vulnerability, an attacker must entice an unsuspecting victim into following a malicious URI.
The following proof-of-concept URI is available:
http://www.example.com/horde/imp/search.php?edit_query=[xss]
Solution / Fix
Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
Horde IMP Webmail Client Multiple Input Validation Vulnerabilities
References:
References:
- [announce] IMP H3 (4.1.4) (final) (Horde)
- Pandora Homepage (Pandora FMS Team)