CVE-2009-3236
published 2009-09-17CVE-2009-3236: The form library in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail…
PriorityP430medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.31%
81.2th percentile
The form library in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail Edition 1.1 before 1.1.6 and 1.2 before 1.2.4; reuses temporary filenames during the upload process which allows remote attackers, with privileges to write to the address book, to overwrite arbitrary files and execute PHP code via crafted Horde_Form_Type_image form field elements.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | application_framework | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
| horde | groupware | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Horde: Improper validation of image form fields (local files overwrite)
vendor_redhat·2009-09-14·CVSS 4.3
CVE-2009-3236 [MEDIUM] Horde: Improper validation of image form fields (local files overwrite)
Horde: Improper validation of image form fields (local files overwrite)
The form library in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail Edition 1.1 before 1.1.6 and 1.2 before 1.2.4; reuses temporary filenames during the upload process which allows remote attackers, with privileges to write to the address book, to overwrite arbitrary files and execute PHP code via crafted Horde_Form_Type_image form field elements.
GHSA
GHSA-6fhg-rjcp-rf8f: The form library in Horde Application Framework 3
ghsa_unreviewed·2022-05-02
CVE-2009-3236 [MEDIUM] GHSA-6fhg-rjcp-rf8f: The form library in Horde Application Framework 3
The form library in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail Edition 1.1 before 1.1.6 and 1.2 before 1.2.4; reuses temporary filenames during the upload process which allows remote attackers, with privileges to write to the address book, to overwrite arbitrary files and execute PHP code via crafted Horde_Form_Type_image form field elements.
No detection rules found.
No public exploits indexed.
http://marc.info/?l=horde-announce&m=125291625030436&w=2http://marc.info/?l=horde-announce&m=125292088004087&w=2http://marc.info/?l=horde-announce&m=125292314007049&w=2http://marc.info/?l=horde-announce&m=125292339907481&w=2http://marc.info/?l=horde-announce&m=125294558611682&w=2http://marc.info/?l=horde-announce&m=125295852706029&w=2http://secunia.com/advisories/36665http://secunia.com/advisories/36882http://www.debian.org/security/2009/dsa-1897http://www.osvdb.org/58107https://exchange.xforce.ibmcloud.com/vulnerabilities/53202http://marc.info/?l=horde-announce&m=125291625030436&w=2http://marc.info/?l=horde-announce&m=125292088004087&w=2http://marc.info/?l=horde-announce&m=125292314007049&w=2http://marc.info/?l=horde-announce&m=125292339907481&w=2http://marc.info/?l=horde-announce&m=125294558611682&w=2http://marc.info/?l=horde-announce&m=125295852706029&w=2http://secunia.com/advisories/36665http://secunia.com/advisories/36882http://www.debian.org/security/2009/dsa-1897http://www.osvdb.org/58107https://exchange.xforce.ibmcloud.com/vulnerabilities/53202
2009-09-17
Published