Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - May 10, 2012

by: Carol~ May 10, 2012 8:00 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - May 10, 2012

by Carol~ Moderator - 5/10/12 8:00 AM

Debian update for php5

Release Date : 2012-05-10

Criticality level : Highly critical
Impact :Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 6.0

Description:
Debian has issued an update for php5. This fixes a vulnerability, which can be exploited by malicious people to disclose certain sensitive information or compromise a vulnerable system.

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2465-1:
http://www.debian.org/security/2012/dsa-2465

http://secunia.com/advisories/49053/


Reply
Report offensive post
Email to friend

Apple Safari Multiple Vulnerabilities

by Carol~ Moderator - 5/10/12 8:03 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-10

Criticality level : Highly critical
Impact : Security Bypass
Cross Site Scripting
System access
Where : From remote
Solution Status : Vendor Patch

Software: Apple Safari 5.x

Description:
Multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.

1) Some vulnerabilities are caused due to a bundled vulnerable version of WebKit.

2) An error related to stage tracking when handling forms can be exploited to populate forms on other websites.

The vulnerabilities are reported in versions prior to 5.1.7.

Solution:
Update to version 5.1.7.

Original Advisory:
http://support.apple.com/kb/HT5282

http://secunia.com/advisories/47292/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Adobe Shockwave Player Multiple Vulnerabilities

by Carol~ Moderator - 5/10/12 8:08 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-09

Criticality level : Highly critical
Impact :System access
Where : From remote
Solution Status : Vendor Patch

Software: Adobe Shockwave Player 11.x

Description:
Multiple vulnerabilities have been reported in Adobe Shockwave Player, which can be exploited by malicious people to compromise a user's system.

1) An error within the IMLLib module when parsing a .dir (Adobe Director) file can be exploited to corrupt memory via a specially crafted file.

2) An error within the DPLib module when parsing a .dir file can be exploited to corrupt memory via a specially crafted file.

3) An error within the IMLLib module when parsing a .dir file can be exploited to corrupt memory via a specially crafted file.

4) Another unspecified error can be exploited to corrupt memory.

5) Another unspecified error can be exploited to corrupt memory.

Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

The vulnerabilities are reported in versions 11.6.4.634 and prior for Windows and Macintosh.

Solution:
Update to version 11.6.5.635.

Provided and/or discovered by:
1 - 3) Rodrigo Rubira Branco, Qualys Vulnerability & Malware Research Labs.
4, 5) The vendor credits Honggang Ren, Fortinet's FortiGuard Labs.

Original Advisory:
Adobe (APSB12-13):
http://www.adobe.com/support/security/bulletins/apsb12-13.html

Rodrigo Rubira Branco:
https://community.qualys.com/docs/DOC-3513
https://community.qualys.com/docs/DOC-3514
https://community.qualys.com/docs/DOC-3515

http://secunia.com/advisories/49086/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Adobe Flash Professional JPG Processing Integer Overflow

by Carol~ Moderator - 5/10/12 8:08 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Adobe Flash Professional JPG Processing Integer Overflow Vulnerability

Release Date : 2012-05-09

Criticality level : Highly critical
Impact :System access
Where : From remote
Solution Status : Unpatched

Software: Adobe Flash Professional CS5 11.x

Description:
Tielei Wang has discovered a vulnerability in Adobe Flash Professional CS5, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an integer overflow error in Flash.exe when allocating memory to process a JPG object using its image dimensions. This can be exploited to cause a heap-based buffer overflow via a specially crafted FLA file.

Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file.

The vulnerability is reported in version 11.5.1.349 and prior for Windows and Macintosh (confirmed in 11.5.1.349).

Solution:
Upgrade to Adobe Flash Professional CS6.

Provided and/or discovered by:
Tielei Wang, Georgia Tech Information Security Center via Secunia.

Original Advisory:
Adobe (APSB12-12):
http://www.adobe.com/support/security/bulletins/apsb12-12.html

http://secunia.com/advisories/47116/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Adobe Illustrator Multiple Vulnerabilities

by Carol~ Moderator - 5/10/12 8:08 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-09

Criticality level : Highly critical
Impact :System access
Where : From remote
Solution Status : Unpatched

Software: Adobe Illustrator CS5 15.x

Description:
Multiple vulnerabilities have been reported in Adobe Illustrator, which can be exploited by malicious people to compromise a user's system.

1) An unspecified error can be exploited to corrupt memory.

2) Another unspecified error can be exploited to corrupt memory.

3) Another unspecified error can be exploited to corrupt memory.

4) Another unspecified error can be exploited to corrupt memory.

5) An integer overflow error in JPEGFormat.aip when calculating the size of a buffer to allocate based on the image dimensions and colour depth can be exploited to cause a heap-based buffer overflow via a specially crafted JPEG image file.

NOTE: This vulnerability is confirmed in CS5 bundling JPEGFormat.aip version 15.0.128.0.

Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

The vulnerabilities are reported in Adobe Illustrator version CS5.5 and prior for Windows and Macintosh. Other versions may also be affected.

Solution:
Upgrade to Adobe Illustrator CS6.

Provided and/or discovered by:
5) Tielei Wang, Georgia Tech Information Security Center via Secunia

The vendor credits:
1, 4) Felipe Andres Manzano via iSIGHT Partners Global Vulnerability Partnership
2, 3) Justin Kim, Microsoft

Original Advisory:
Adobe (APSB12-10):
http://www.adobe.com/support/security/bulletins/apsb12-10.html

http://secunia.com/advisories/47118/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Debian update for rails

by Carol~ Moderator - 5/10/12 8:08 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-10

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 6.0

Description:
Debian has issued an update for rails. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2466-1:
http://www.debian.org/security/2012/dsa-2466

http://secunia.com/advisories/49046/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for java-1_5_0-ibm

by Carol~ Moderator - 5/10/12 8:08 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-10

Criticality level : Highly critical
Impact : Manipulation of data
DoS
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: SUSE Linux Enterprise Server (SLES) 10

Description:
SUSE has issued an update for java-1_5_0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

Solution:
Apply updated packages via the zypper package manager.

Original Advisory:
SUSE-SU-2012:0602-1:
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html

http://secunia.com/advisories/49076/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for java-1_6_0-ibm

by Carol~ Moderator - 5/10/12 8:11 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-10

Criticality level : Highly critical
Impact : Manipulation of data
DoS
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: SUSE Linux Enterprise Server (SLES) 10
SUSE Linux Enterprise Server (SLES) 11

Description:
SUSE has issued an update for java-1_6_0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

Solution:
Apply updated packages via the zypper package manager.

Original Advisory:
SUSE-SU-2012:0603-1:
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00010.html

http://secunia.com/advisories/49124/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

WordPress User Photo Plugin URL Cross-Site Scripting

by Carol~ Moderator - 5/10/12 8:11 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

WordPress User Photo Plugin URL Cross-Site Scripting Vulnerability

Release Date : 2012-05-10

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: WordPress User Photo Plugin 0.x

Description:
A vulnerability has been discovered in the User Photo plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed via the URL to wp-admin/options-general.php is not properly sanitised in the "userphoto_options_page()" function in wp-content/plugins/user-photo/user-photo.php before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerability is confirmed in version 0.9.5.1. Prior versions may also be affected.

Solution:
Update to version 0.9.5.2.

Provided and/or discovered by:
The vendor credits Ryan Hellyer.

Original Advisory:
http://wordpress.org/extend/plugins/user-photo/changelog/

http://secunia.com/advisories/49100/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Drupal Glossary Module Taxonomy Information Script Insertion

by Carol~ Moderator - 5/10/12 8:11 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Drupal Glossary Module Taxonomy Information Script Insertion Vulnerability

Release Date : 2012-05-10

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Drupal Glossary Module 6.x

Description:
A vulnerability has been reported in the Glossary module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

Certain input passed via taxonomy information is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.

Successful exploitation requires permissions to create or edit taxonomy terms.

The vulnerability is reported in versions prior to 6.x-1.8.

Solution:
Update to version 6.x-1.8.

Provided and/or discovered by:
Dylan Wilder-Tack, Drupal Security Team

Original Advisory:
SA-CONTRIB-2012-073:
http://drupal.org/node/1569482

http://secunia.com/advisories/49074/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Drupal Take Control Module Cross-Site Request Forgery

by Carol~ Moderator - 5/10/12 9:53 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Drupal Take Control Module Cross-Site Request Forgery Vulnerability

Release Date : 2012-05-10

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Unpatched

Software: Drupal Take Control Module 6.x

Description:
A vulnerability has been reported in the Take Control module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.

The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. manipulate certain files within the Drupal file system by tricking an administrative user into visiting a malicious web site.

The vulnerability is reported in 6.x-2.x versions prior to 6.x-2.2.

Solution:
Update to version 6.x-2.2.

Provided and/or discovered by:
The vendor credits Carl Wiedemann.

Original Advisory:
SA-CONTRIB-2012-075:
http://drupal.org/node/1569512

http://secunia.com/advisories/49060/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Core FTP File Download Buffer Overflow Vulnerability

by Carol~ Moderator - 5/10/12 9:55 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date: 2012-05-09
Last Update: 2012-05-10

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Workaround

Software: Core FTP LE 2.x
Core FTP Pro 2.x

Description:
Han Lee has discovered a vulnerability in Core FTP, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error when processing a filename to be downloaded. This can be exploited to cause a stack-based buffer overflow via a specially crafted FTP LIST command response.

Successful exploitation allows execution of arbitrary code, but requires tricking a user into connecting to a malicious server.

The vulnerability is confirmed in version LE 2.2 Build 1741. Other versions may also be affected.

Solution:
Fixed in beta release version 2.2 Build 1745.

Provided and/or discovered by:
Han Lee via Secunia

Original Advisory:
http://coreftp.com/forums/viewtopic.php?t=137481

http://secunia.com/advisories/49050/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

DecisionTools SharpGrid ActiveX Control Code Execution

by Carol~ Moderator - 5/10/12 10:33 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

DecisionTools SharpGrid ActiveX Control Code Execution Vulnerability

Release Date : 2012-05-09

Criticality level : Highly critical
Impact :System access
Where : From remote
Solution Status : Unpatched

Software: Data Dynamics SharpGrid ActiveX Control 2.x
DecisionTools 5.x

Description:
Francis Provencher has discovered a vulnerability in DecisionTools, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to the "Images" property in the SharpGrid ActiveX control insecurely using the assigned value as an image list pointer and can be exploited to call a virtual function within an arbitrary memory location.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 5.7 (sg20u.ocx version 2.1.1.1127). Other versions may also be affected.

Solution:
Set the kill-bit for the affected ActiveX control.

Provided and/or discovered by:
Francis Provencher, Protek Research Lab's via Secunia.

http://secunia.com/advisories/48571/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Schneider Electric Kerwin Cross-Site Scripting

by Carol~ Moderator - 5/10/12 10:33 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Schneider Electric Kerwin Cross-Site Scripting Vulnerabilities

Release Date : 2012-05-10

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Kerwin 6.x

Description:
phocean has reported some vulnerabilities in Kerwin, which can be exploited by malicious people to conduct cross-site scripting attacks.

1) Input passed via the "evtvariablename" parameter to kw.dll is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

2) Certain input used for searching and displaying content is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerabilities are reported in versions prior to 6.0.1.

Solution:
Reportedly fixed in version 6.0.1.

Provided and/or discovered by
phocean:

Original Advisory:
http://www.phocean.net/2012/05/08/cve-2012-1990-kerwebkerwin-xss-vulnerabilities.html

http://secunia.com/advisories/49041/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Debian update for libjakarta-poi-java

by Carol~ Moderator - 5/10/12 11:47 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-10

Criticality level : Less critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 6.0

Description:
Debian has issued an update for libjakarta-poi-java. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a missing validation check of the "length" attribute in an UnhandledDataStructure() constructor (src/org/apache/poi/hwpf/model/UnhandledDataStructure.java) before allocating a buffer. This can be exploited to allocate an arbitrary amount of memory and cause an OutofMemoryError or potentially cause the JVM (Java Virtual Machine) to become unstable via a specially crafted CDF (Channel Definition Format) or CFBF (Compound File Binary Format) document.

Solution:
Apply updated packages via the apt-get package manager.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
DSA-2468-1:
http://www.debian.org/security/2012/dsa-2468

Red Hat Bug #799078:
https://bugzilla.redhat.com/show_bug.cgi?id=799078

http://secunia.com/advisories/49040/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Cisco Unified MeetingPlace Cross-Site Scripting and SQL

by Carol~ Moderator - 5/10/12 11:50 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Cisco Unified MeetingPlace Cross-Site Scripting and SQL Injection Vulnerabilities

Release Date : 2012-05-09

Criticality level : Moderately critical
Impact : Cross Site Scripting
Manipulation of data
Where : From remote
Solution Status : Vendor Patch

Software: Cisco Unified MeetingPlace 7.x

Description:
Multiple vulnerabilities have been reported in Cisco Unified MeetingPlace, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

1) Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

2) Certain unspecified input is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerabilities are reported in versions prior to 7.1.2.6 (MR1).

Solution:
Update to version 7.1.2.6 (MR1).

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://www.cisco.com/en/US/docs/voice_ip_comm/meetingplace/7_1/english/release_notes/mp71rn.html

http://secunia.com/advisories/49104/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Cisco Unified MeetingPlace Directory Enumeration and Cross

by Carol~ Moderator - 5/10/12 11:50 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Cisco Unified MeetingPlace Directory Enumeration and Cross-Site Scripting Vulnerabilities

Release Date : 2012-05-09

Criticality level : Less critical
Impact : Cross Site Scripting
Exposure of system information
Where : From remote
Solution Status : Vendor Patch

Software: Cisco Unified MeetingPlace 6.x

Description:
A weakness and two vulnerabilities have been reported in Cisco Unified MeetingPlace, which can be exploited by malicious people to enumerate folders on an affected system and conduct cross-site scripting attacks.

1) The weakness is caused due to an unspecified error and can be exploited to enumerate existing folders via directory traversal sequences.

2) Certain input is not properly sanitised on the Account Page before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

3) Certain input is not properly sanitised in MP Web before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The weakness and vulnerabilities are reported in versions prior to 6.1.1.4 (MR1).

Solution:
Update to version 6.1.1.4 (MR1).

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://www.cisco.com/en/US/docs/voice_ip_comm/meetingplace/6_1/release_notes/mp61_rn.pdf

http://secunia.com/advisories/49102/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Pivotx "file" Cross-Site Scripting Vulnerability

by Carol~ Moderator - 5/10/12 11:50 AM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-09

Criticality level : Less critical
Impact : Cross Site Scripting
Exposure of sensitive information
Where : From remote
Solution Status : Vendor Workaround

Software: PivotX 2.x

Description:
High-Tech Bridge SA has discovered a vulnerability in PivotX, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the "file" parameter in ajaxhelper.php (when "function" is set to "view") is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerability is confirmed in version 2.3.2. Other versions may also be affected.

Solution:
Fixed in the SVN repository.

Provided and/or discovered by:
High-Tech Bridge SA

Original Advisory:
HTB23087:
https://www.htbridge.com/advisory/HTB23087

http://secunia.com/advisories/49062/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM AIX RPC Portmapper Security Bypass Vulnerability

by Carol~ Moderator - 5/10/12 12:04 PM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-09

Criticality level : Less critical
Impact : Security Bypass
Where : From local network
Solution Status : Vendor Patch

Operating System: AIX 5.x
AIX 6.x
AIX 7.x

Description:
IBM has acknowledged a vulnerability in AIX, which can be exploited by malicious people to bypass certain security restrictions.

The vulnerability is reported in versions 5.3, 6.1, and 7.1.

Solution:
Apply interim fix or APAR.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
IBM (IV13751, IV13820, IV13827, IV14209, IV14210, IV14211):
http://aix.software.ibm.com/aix/efixes/security/rpc_advisory.asc

http://secunia.com/advisories/49056/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Horde IMP Multiple Cross-Site Scripting Vulnerabilities

by Carol~ Moderator - 5/10/12 12:04 PM

In Reply to: VULNERABILITIES / FIXES - May 10, 2012 by Carol~ Moderator

Release Date : 2012-05-09

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: IMP Webmail Client 5.x

Description:
Multiple vulnerabilities have been reported in Horde IMP, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the dynamic compose page, the minimal inbox, and message pages is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerabilities are reported in versions prior to 5.0.21.

Solution:
Update to version 5.0.21.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory
http://lists.horde.org/archives/announce/2012/000765.html
https://github.com/horde/horde/blob/e240b069d26cef3381368431cd9ffb73afa6154f/imp/docs/CHANGES

http://secunia.com/advisories/49042/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close