CVE-2007-1679
published 2007-03-26CVE-2007-1679: Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via…
PriorityP416medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.91%
55.5th percentile
Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in (1) imp/search.php and (2) ingo/rule.php. NOTE: this issue has been disputed by the vendor, noting that the search.php issue was resolved in CVE-2006-4255, and attackers can only use rule.php to inject XSS into their own pages
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| horde | groupware | — | — |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat5.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q5ww-rhx4-prr5: ** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware Webmail 1
ghsa_unreviewed·2022-05-01·CVSS 4.3
CVE-2007-1679 [MEDIUM] CWE-79 GHSA-q5ww-rhx4-prr5: ** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware Webmail 1
** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in (1) imp/search.php and (2) ingo/rule.php. NOTE: this issue has been disputed by the vendor, noting that the search.php issue was resolved in CVE-2006-4255, and attackers can only use rule.php to inject XSS into their own pages.
Red Hat
python: imageop module multiple integer overflows
vendor_redhat·2008-10-19·CVSS 5.8
CVE-2008-4864 [MEDIUM] CWE-190 python: imageop module multiple integer overflows
python: imageop module multiple integer overflows
Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different vulnerability than CVE-2007-4965 and CVE-2008-1679.
Red Hat
python: imageop module integer overflows
vendor_redhat·2008-03-29·CVSS 5.8
CVE-2008-1679 [MEDIUM] CWE-190 python: imageop module integer overflows
python: imageop module integer overflows
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2008-4864 python: imageop module multiple integer overflows
bugzilla·2008-11-03·CVSS 5.8
CVE-2008-4864 [MEDIUM] CVE-2008-4864 python: imageop module multiple integer overflows
CVE-2008-4864 python: imageop module multiple integer overflows
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-4864 to the following vulnerability:
Multiple integer overflows in imageop.c in the imageop module in
Python 1.5.2 through 2.5.1 allow context-dependent attackers to break
out of the Python VM and execute arbitrary code via large integer
values in certain arguments to the crop function, leading to a buffer
overflow, a different vulnerability than CVE-2007-4965 and
CVE-2008-1679.
References:
http://scary.beasts.org/security/CESA-2008-008.html
http://svn.python.org/view?rev=66689&view=rev
http://www.securityfocus.com/bid/31976
http://www.openwall.com/lists/oss-security/2008/10/27/2
http://www.openwall.com/lists/oss-security/2008/10/29/3
Discussion:
The Red
Bugzilla
CVE-2008-1679 python: imageop module integer overflows
bugzilla·2008-04-07·CVSS 5.8
CVE-2008-1679 [MEDIUM] CVE-2008-1679 python: imageop module integer overflows
CVE-2008-1679 python: imageop module integer overflows
David Remahl of Apple reported, that the patch used to address multiple integer
overflows in python's imageop module (CVE-2007-4965) did not completely address
all overflow cases.
Additional test cases were provided as additional comment:
http://bugs.python.org/msg64682
in upstream bug report used to track CVE-2007-4965:
http://bugs.python.org/issue1179
Red Hat bug used to track CVE-2007-4965: bug #295971
Acknowledgements:
Red Hat would like to thank David Remahl of the Apple Product Security team
for responsibly reporting these issues.
Discussion:
Patch to address this issue in upstream bug report:
http://bugs.python.org/file9975/python-2.5-int-overflow-2.patch
---
The Red Hat Security Response Team has rated this issue a
http://securityreason.com/securityalert/2487http://www.securityfocus.com/archive/1/463819/100/0/threadedhttp://www.securityfocus.com/archive/1/463911/100/0/threadedhttp://www.securityfocus.com/bid/23136https://exchange.xforce.ibmcloud.com/vulnerabilities/33228http://securityreason.com/securityalert/2487http://www.securityfocus.com/archive/1/463819/100/0/threadedhttp://www.securityfocus.com/archive/1/463911/100/0/threadedhttp://www.securityfocus.com/bid/23136https://exchange.xforce.ibmcloud.com/vulnerabilities/33228
2007-03-26
Published