Vulnerabilities > CVE-2004-0584 - HTML Injection vulnerability in Horde IMP Email Header

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
horde
nessus

Summary

Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

Nessus

  • NASL familyGentoo Local Security Checks
    NASL idGENTOO_GLSA-200406-11.NASL
    descriptionThe remote host is affected by the vulnerability described in GLSA-200406-11 (Horde-IMP: Input validation vulnerability) Horde-IMP fails to properly sanitize email messages that contain malicious HTML or script code. Impact : By enticing a user to read a specially crafted e-mail, an attacker can execute arbitrary scripts running in the context of the victim
    last seen2020-06-01
    modified2020-06-02
    plugin id14522
    published2004-08-30
    reporterThis script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/14522
    titleGLSA-200406-11 : Horde-IMP: Input validation vulnerability
  • NASL familyCGI abuses : XSS
    NASL idIMP_CONTENT_TYPE_XSS.NASL
    descriptionThe remote server is running at least one instance of IMP whose version number is between 2.0 and 3.2.3 inclusive. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to cause a victim to unknowingly run arbitrary JavaScript code simply by reading a MIME message with a specially crafted Content-Type header. Note : Nessus has determined the vulnerability exists on the target simply by looking at the version number of IMP installed there; it has not attempted to actually exploit the vulnerability.
    last seen2020-06-01
    modified2020-06-02
    plugin id12263
    published2004-06-08
    reporterThis script is Copyright (C) 2004-2018 George A. Theall
    sourcehttps://www.tenable.com/plugins/nessus/12263
    titleIMP Content-Type Header XSS