• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Horde MIME Viewer Inline Attachment HTML Injection Vulnerability

Bugtraq ID:	15535
Class:	Input Validation Error
CVE:	CVE-2005-3759
Remote:	Yes
Local:	No
Published:	Nov 22 2005 12:00AM
Updated:	Apr 03 2006 10:33PM
Credit:	This issue was disclosed by the vendor.
Vulnerable:	Horde Horde 3.0.6 Horde Horde 3.0.4 -RC 2 Horde Horde 3.0.4 -RC 1 Horde Horde 3.0.4 Horde Horde 3.0.3 Horde Horde 3.0.2 Horde Horde 3.0.1 Horde Horde 3.0 Horde Horde 2.2.9 Horde Horde 2.2.8 Horde Horde 2.2.7 Horde Horde 2.2.6 Horde Horde 2.2.5 Horde Horde 2.2.4 -RC1 Horde Horde 2.2.4 Horde Horde 2.2.3 Horde Horde 2.2.1 Horde Horde 2.2 Horde Horde 2.1.3 Horde Horde 2.1 Horde Horde 2.0 Horde Horde 1.2.8 + Conectiva Linux 8.0 + Conectiva Linux 7.0 Horde Horde 1.2.7 - Conectiva Linux 7.0 - Conectiva Linux 6.0 - Conectiva Linux 5.1 - Conectiva Linux 5.0 Horde Horde 1.2.6 Horde Horde 1.2.5 Horde Horde 1.2.4 Horde Horde 1.2.3 Horde Horde 1.2.2 Horde Horde 1.2.1 Horde Horde 1.2 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1
Not Vulnerable:	Horde Horde 3.0.7