CVE-2006-1491

Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://lists.horde.org/archives/announce/2006/000271.html	Patch
http://www.securityfocus.com/bid/17292	Patch
http://cvs.horde.org/diff.php?f=horde%2Fservices%2Fhelp%2Findex.php&r1=2.85&r2=2.86
http://securitytracker.com/id?1015841	Patch
http://www.gentoo.org/security/en/glsa/glsa-200604-02.xml
http://www.novell.com/linux/security/advisories/2006_07_sr.html
http://secunia.com/advisories/19528	Vendor Advisory
http://secunia.com/advisories/19504	Vendor Advisory
http://www.attrition.org/pipermail/vim/2006-March/000671.html
http://lists.horde.org/archives/announce/2006/000272.html
http://secunia.com/advisories/19485	Vendor Advisory
http://www.debian.org/security/2006/dsa-1033
http://secunia.com/advisories/19619	Vendor Advisory
http://www.debian.org/security/2006/dsa-1034
http://secunia.com/advisories/19692	Vendor Advisory
http://www.vupen.com/english/advisories/2006/1154	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25516

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:horde:application_framework:3.0.4_rc2:::::::*
	cpe:2.3:a:horde:application_framework:3.0.6:::::::*
	cpe:2.3:a:horde:application_framework:3.0.4:::::::*
	cpe:2.3:a:horde:application_framework:3.0.4_rc1:::::::*
	cpe:2.3:a:horde:application_framework:3.0:::::::*
	cpe:2.3:a:horde:application_framework:3.0.1:::::::*
	cpe:2.3:a:horde:application_framework:3.0.7:::::::*
	cpe:2.3:a:horde:application_framework:3.0.8:::::::*
	cpe:2.3:a:horde:application_framework:3.0.2:::::::*
	cpe:2.3:a:horde:application_framework:3.0.3:::::::*
	cpe:2.3:a:horde:application_framework:3.0.9:::::::*
	cpe:2.3:a:horde:application_framework:3.1:::::::*

Information

Published : 2006-03-29 14:02

Updated : 2017-07-19 18:30

NVD link : CVE-2006-1491

Mitre link : CVE-2006-1491

JSON object : View

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

Products Affected

horde

application_framework

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://lists.horde.org/archives/announce/2006/000271.html", "name": "http://lists.horde.org/archives/announce/2006/000271.html", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/17292", "name": "17292", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://cvs.horde.org/diff.php?f=horde%2Fservices%2Fhelp%2Findex.php&r1=2.85&r2=2.86", "name": "http://cvs.horde.org/diff.php?f=horde%2Fservices%2Fhelp%2Findex.php&r1=2.85&r2=2.86", "tags": [], "refsource": "CONFIRM"}, {"url": "http://securitytracker.com/id?1015841", "name": "1015841", "tags": ["Patch"], "refsource": "SECTRACK"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-02.xml", "name": "GLSA-200604-02", "tags": [], "refsource": "GENTOO"}, {"url": "http://www.novell.com/linux/security/advisories/2006_07_sr.html", "name": "SUSE-SR:2006:007", "tags": [], "refsource": "SUSE"}, {"url": "http://secunia.com/advisories/19528", "name": "19528", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/19504", "name": "19504", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.attrition.org/pipermail/vim/2006-March/000671.html", "name": "20060330 Recent unspecified Horde vuln is eval injection", "tags": [], "refsource": "VIM"}, {"url": "http://lists.horde.org/archives/announce/2006/000272.html", "name": "http://lists.horde.org/archives/announce/2006/000272.html", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/19485", "name": "19485", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2006/dsa-1033", "name": "DSA-1033", "tags": [], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/19619", "name": "19619", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2006/dsa-1034", "name": "DSA-1034", "tags": [], "refsource": "DEBIAN"}, {"url": "http://secunia.com/advisories/19692", "name": "19692", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2006/1154", "name": "ADV-2006-1154", "tags": ["Vendor Advisory"], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25516", "name": "horde-help-viewer-command-execution(25516)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-94"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-1491", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-03-29T22:02Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.4_rc2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.4_rc1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:horde:application_framework:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-20T01:30Z"}

7.5 /10