Horde Help Viewer Arbitrary Code Execution

ID OSVDB:24322
Type osvdb
Reporter OSVDB
Modified 2006-03-28T05:02:37


Solution Description

Upgrade to version 3.1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.


Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1015841 Secunia Advisory ID:19692 Secunia Advisory ID:19485 Secunia Advisory ID:19504 Secunia Advisory ID:19528 Secunia Advisory ID:19619 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200604-02.xml Other Advisory URL: http://www.debian.org/security/2006/dsa-1034 Mail List Post: http://lists.horde.org/archives/announce/2006/000271.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000671.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000672.html ISS X-Force ID: 25516 Generic Exploit URL: http://milw0rm.com/exploits/1660 FrSIRT Advisory: ADV-2006-1154 CVE-2006-1491 Bugtraq ID: 17292