EUVD-2000-0897

Malware in sbrugna...

DEBIAN-CVE-2014-3999

The HordeLdap library before 2.0.6 for Horde allows remote attackers to bypass authentication by leveraging knowledge of the LDAP bind user DN...

CVE-2000-0910

Horde library 1.02 allows attackers to execute arbitrary commands via shell metacharacters in the "from" address...

CVE-2000-0910

Affected software: Horde library 1.02. Vulnerability: arbitrary commands can be executed via shell metacharacters in the from address. Root cause: lack of proper sanitization of shell metacharacters in the From field. Impact: potential remote code execution as implied by command execution in the ...

CVE-2000-0910

Horde library 1.02 allows attackers to execute arbitrary commands via shell metacharacters in the "from" address...

Дырка в библиотеке horde

При обработке поля From: не проверяется наличие метасимволов, что позволяет вставить шелл-команды в письмо...

Horde library Bug part 2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Horde Library $from Bug part 2 + How to exploit with IMP and Sendmail Description: The Fix of the first detected problem with the $from variable in the horde library was just escaping shellchars which avoids directly executing commands. It is still...

horde.txt

Date: Fri, 8 Sep 2000 17:03:36 +0200 Sender: Bugtraq List From: "Winter, Christian" Subject: horde library bug - unchecked from-address To: [email protected] Hi, this bug we discovered recently. HORDE 1.2.0 $from-bug and how to exploit with IMP 2.2.0 Disclaimer: This is intended as a pape...

horde library bug - unchecked from-address

Hi, this bug we discovered recently. HORDE 1.2.0 $from-bug and how to exploit with IMP 2.2.0 Disclaimer: This is intended as a paper for sysadmins who want to secure their systems. It is NOT a how to for scriptkiddies to run any attack on a IMP-using site. The authors of this text will not be hel...