Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-4080Interpretation Conflict in IMP

CWE-436Interpretation Conflict4 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
1.3%
top 20.31%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Horde IMP
Timeline
PublishedDec 8
Latest updateMay 1

Description

Horde IMP 4.0.4 and earlier does not sanitize strings containing UTF16 null characters, which allows remote attackers to conduct cross-site scripting (XSS) attacks via UTF16 encoded attachments and strings that will be executed when viewed using Internet Explorer, which ignores the characters.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDhorde/imp25 versions+24

🔴Vulnerability Details

1
GHSA
GHSA-8xjp-h5q2-g6vf: Horde IMP 42022-05-01

💥Exploits & PoCs

1
Exploit-DB
Horde IMP 2.2.x/3.2.x/4.0.x - Email Attachments HTML Injection2005-12-06

📐Framework References

1
CWE
Interpretation Conflict