Vulnerabilities > CVE-2007-1474 - Unspecified vulnerability in Horde Application Framework and IMP
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames.
Vulnerable Configurations
Exploit-Db
description | Horde Framework and IMP 2.x/3.x Cleanup Cron Script Arbitrary File Deletion Vulnerability. CVE-2007-1474. Local exploit for linux platform |
id | EDB-ID:29746 |
last seen | 2016-02-03 |
modified | 2007-03-15 |
published | 2007-03-15 |
reporter | anonymous |
source | https://www.exploit-db.com/download/29746/ |
title | Horde Framework and IMP 2.x/3.x Cleanup Cron Script Arbitrary File Deletion Vulnerability |
Nessus
NASL family | Debian Local Security Checks |
NASL id | DEBIAN_DSA-1406.NASL |
description | Several remote vulnerabilities have been discovered in the Horde web application framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-3548 Moritz Naumann discovered that Horde allows remote attackers to inject arbitrary web script or HTML in the context of a logged in user (cross site scripting). This vulnerability applies to oldstable (sarge) only. - CVE-2006-3549 Moritz Naumann discovered that Horde does not properly restrict its image proxy, allowing remote attackers to use the server as a proxy. This vulnerability applies to oldstable (sarge) only. - CVE-2006-4256 Marc Ruef discovered that Horde allows remote attackers to include web pages from other sites, which could be useful for phishing attacks. This vulnerability applies to oldstable (sarge) only. - CVE-2007-1473 Moritz Naumann discovered that Horde allows remote attackers to inject arbitrary web script or HTML in the context of a logged in user (cross site scripting). This vulnerability applies to both stable (etch) and oldstable (sarge). - CVE-2007-1474 iDefense discovered that the cleanup cron script in Horde allows local users to delete arbitrary files. This vulnerability applies to oldstable (sarge) only. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 28151 |
published | 2007-11-12 |
reporter | This script is Copyright (C) 2007-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/28151 |
title | Debian DSA-1406-1 : horde3 - several vulnerabilities |
code |
|
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=489
- http://lists.horde.org/archives/announce/2007/000315.html
- http://secunia.com/advisories/27565
- http://www.debian.org/security/2007/dsa-1406
- http://www.securityfocus.com/bid/22985
- http://www.securitytracker.com/id?1017784
- http://www.securitytracker.com/id?1017785
- http://www.vupen.com/english/advisories/2007/0965
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32997