Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Horde_application_framework | Horde | 3.0.0 (including) | 3.0.0 (including) |
| Horde_application_framework | Horde | 3.0.4 (including) | 3.0.4 (including) |
| Horde_application_framework | Horde | 3.1.3 (including) | 3.1.3 (including) |
| Imp | Horde | 2.0 (including) | 2.0 (including) |
| Imp | Horde | 2.2 (including) | 2.2 (including) |
| Imp | Horde | 2.2.1 (including) | 2.2.1 (including) |
| Imp | Horde | 2.2.2 (including) | 2.2.2 (including) |
| Imp | Horde | 2.2.3 (including) | 2.2.3 (including) |
| Imp | Horde | 2.2.4 (including) | 2.2.4 (including) |
| Imp | Horde | 2.2.5 (including) | 2.2.5 (including) |
| Imp | Horde | 2.2.6 (including) | 2.2.6 (including) |
| Imp | Horde | 2.2.7 (including) | 2.2.7 (including) |
| Imp | Horde | 2.2.8 (including) | 2.2.8 (including) |
| Imp | Horde | 2.3 (including) | 2.3 (including) |
| Imp | Horde | 3.0 (including) | 3.0 (including) |
| Imp | Horde | 3.1 (including) | 3.1 (including) |
| Imp | Horde | 3.1.2 (including) | 3.1.2 (including) |
| Imp | Horde | 3.2 (including) | 3.2 (including) |
| Imp | Horde | 3.2.1 (including) | 3.2.1 (including) |
| Imp | Horde | 3.2.2 (including) | 3.2.2 (including) |
| Imp | Horde | 3.2.3 (including) | 3.2.3 (including) |
| Imp | Horde | 3.2.4 (including) | 3.2.4 (including) |
| Imp | Horde | 3.2.5 (including) | 3.2.5 (including) |
| Imp | Horde | 3.2.6 (including) | 3.2.6 (including) |
| Horde3 | Ubuntu | dapper | * |
| Horde3 | Ubuntu | devel | * |
| Horde3 | Ubuntu | edgy | * |
| Horde3 | Ubuntu | feisty | * |
| Horde3 | Ubuntu | gutsy | * |
| Horde3 | Ubuntu | hardy | * |
| Horde3 | Ubuntu | intrepid | * |
| Horde3 | Ubuntu | jaunty | * |
| Horde3 | Ubuntu | karmic | * |
| Horde3 | Ubuntu | upstream | * |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=489
- http://lists.horde.org/archives/announce/2007/000315.html
- http://secunia.com/advisories/27565
- http://www.debian.org/security/2007/dsa-1406
- http://www.securityfocus.com/bid/22985
- http://www.securitytracker.com/id?1017784
- http://www.securitytracker.com/id?1017785
- http://www.vupen.com/english/advisories/2007/0965
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32997
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=489
- http://lists.horde.org/archives/announce/2007/000315.html
- http://secunia.com/advisories/27565
- http://www.debian.org/security/2007/dsa-1406
- http://www.securityfocus.com/bid/22985
- http://www.securitytracker.com/id?1017784
- http://www.securitytracker.com/id?1017785
- http://www.vupen.com/english/advisories/2007/0965
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32997