SUSE CVE-2007-6018

IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to 1 delete arbitrary e-mail messages via a modified numeric ID or 2 "purge" deleted emails via a crafted email message...

openSUSE Security Update : imp (imp-659)

Version update to IMP 4.1.6 fixes a problem with validating HTTP requests that allowed attackers to delete emails CVE-2007-6018 and some cross-site-scripting issues CVE-2009-0930. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE 10 Security Update : imp (imp-6101)

Version update to IMP 4.1.6 fixes a problem with validating HTTP requests that allowed attackers to delete emails CVE-2007-6018 and some cross-site-scripting issues CVE-2009-0930. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

Fedora Update for turba FEDORA-2008-2087

Check for the Version of turba OpenVAS Vulnerability Test Fedora Update for turba FEDORA-2008-2087 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for horde FEDORA-2008-2040

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for turba FEDORA-2008-2040

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for imp FEDORA-2008-2087

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for imp FEDORA-2008-2040

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 8 : horde-3.1.6-1.fc8 / imp-4.1.6-1.fc8 / turba-2.1.7-1.fc8 (2008-2087)

Bug 428625 - CVE-2007-6018 horde: input validation vulnerabilities - Bug 432027 - CVE-2008-0807 turba: insufficient access checks Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

Debian Security Advisory DSA 1470-1 (horde3)

The remote host is missing an update to horde3 announced via advisory DSA 1470-1. OpenVAS Vulnerability Test $Id: deb14701.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1470-1 horde3 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

[SECURITY] [DSA 1470-1] New horde3 packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1470-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 20, 2008 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1470-1] New horde3 packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1470-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 20, 2008 http://www.debian.org/security/faq -...

Horde IMP及Groupware Webmail Edition多个输入验证漏洞

BUGTRAQ ID: 27223 CVECAN ID: CVE-2007-6018 IMP是一款基于Web的强大的邮件程序，它由Horde项目组开发。可使用在Linux/Unix或者Microsoft Windows操作系统下。 IMP在处理HTML的数据时存在漏洞，远程攻击者可能利用此漏洞非授权操作邮件。 IMP Webmail客户端和Groupware Webmail Edition的HTML过滤器没有过滤掉frame和frameset...

CVE-2007-6018

CVE-2007-6018 affects IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3, where insufficient validation of HTTP requests allows a remote attacker to (1) delete arbitrary emails via a modified numeric ID and (2) purge deleted emails via a crafted...