CVE-2008-1284 — Path Traversal in Groupware

CWE-22 — Path Traversal CWE-20 — Improper Input Validation CWE-158 — Improper Neutralization of Null Byte or NUL Character6 documents5 sources

Severity

6.0MEDIUMNVD

EPSS

1.7%

top 17.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Horde Groupware Horde Groupware Webmail Edition Horde

Timeline

PublishedMar 11

Latest updateMay 1

Description

Directory traversal vulnerability in Horde 3.1.6, Groupware before 1.0.5, and Groupware Webmail Edition before 1.0.6, when running with certain configurations, allows remote authenticated users to read and execute arbitrary files via ".." sequences and a null byte in the theme name.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 6.8 | Impact: 6.4

Affected Packages3 packages

▶NVDhorde/groupware_webmail_edition1.0.5

▶NVDhorde/groupware1.0.4

▶NVDhorde/horde3.1.6

Patches

Patch: lists.horde.org ↗Patch: www.securityfocus.com ↗Patch: lists.horde.org ↗

🔴Vulnerability Details

GHSA

GHSA-7mw7-mpj3-2hr3: Directory traversal vulnerability in Horde 3↗2022-05-01

▶

📋Vendor Advisories

Red Hat

horde: arbitrary file inclusion through abuse of the theme preference↗

▶

📐Framework References

CWE

Improper Input Validation↗

▶

CWE

Improper Neutralization of Null Byte or NUL Character↗

▶

💬Community

Bugzilla

CVE-2008-1284 horde: arbitrary file inclusion through abuse of the theme preference↗2008-03-08

▶