Horde Help Viewer Arbitrary Code Execution

2006-03-28T05:02:37
ID OSVDB:24322
Type osvdb
Reporter OSVDB
Modified 2006-03-28T05:02:37

Description

Solution Description

Upgrade to version 3.1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1015841 Secunia Advisory ID:19692 Secunia Advisory ID:19485 Secunia Advisory ID:19504 Secunia Advisory ID:19528 Secunia Advisory ID:19619 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200604-02.xml Other Advisory URL: http://www.debian.org/security/2006/dsa-1034 Mail List Post: http://lists.horde.org/archives/announce/2006/000271.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000671.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000672.html ISS X-Force ID: 25516 Generic Exploit URL: http://milw0rm.com/exploits/1660 FrSIRT Advisory: ADV-2006-1154 CVE-2006-1491 Bugtraq ID: 17292