PT-2006-4424 · Horde · Horde Application Framework

Moritz Naumann

Published

2006-07-13

Updated

2018-10-18

CVE-2006-3549

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Horde Application Framework versions 3.0.0 through 3.0.10 Horde Application Framework versions 3.1.0 through 3.1.1

Description The issue allows remote attackers to perform Web tunneling attacks and use the server as a proxy via http, https, and ftp URL in the url parameter. This is due to the improper restriction of the image proxy capability in the services/go.php file.

Recommendations For Horde Application Framework versions 3.0.0 through 3.0.10, restrict access to the services/go.php file to minimize the risk of exploitation. For Horde Application Framework versions 3.1.0 through 3.1.1, avoid using the url parameter in the services/go.php file until the issue is resolved.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-3549

DSA-1406-1

Affected Products

Horde Application Framework

PT-2006-4424 · Horde · Horde Application Framework

CVE-2006-3549

Related Identifiers

Affected Products

References · 15