CVE-2009-3237

Name of the Vulnerable Software and Affected Versions Horde Application Framework versions 3.2 through 3.2.4 and 3.3 through 3.3.4 Horde Groupware versions 1.1 through 1.1.5 and 1.2 through 1.2.3 Horde Groupware Webmail Edition versions 1.1 through 1.1.5 and 1.2 through 1.2.3

Description The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved through crafted number preferences that are not properly handled in the preference system, as demonstrated by the sidebar width parameter in services/prefs.php. Alternatively, it can be done through crafted unknown MIME "text parts" that are not properly handled in the MIME viewer library, specifically in config/mime drivers.php.

Recommendations For Horde Application Framework versions 3.2 through 3.2.4, update to version 3.2.5 or later. For Horde Application Framework versions 3.3 through 3.3.4, update to version 3.3.5 or later. For Horde Groupware versions 1.1 through 1.1.5, update to version 1.1.6 or later. For Horde Groupware versions 1.2 through 1.2.3, update to version 1.2.4 or later. For Horde Groupware Webmail Edition versions 1.1 through 1.1.5, update to version 1.1.6 or later. For Horde Groupware Webmail Edition versions 1.2 through 1.2.3, update to version 1.2.4 or later. As a temporary workaround, consider restricting access to the preference system in services/prefs.php and the MIME viewer library in config/mime drivers.php until a patch is available. Avoid using the sidebar width parameter in the affected API endpoint until the issue is resolved.