Horde Application Framework CSV File Upload Code Execution Vulnerability

Horde Application Framework CSV File Upload Code Execution Vulnerability

Solution:
This issue has been addressed in Horde 3.0.8.

Please see the references for more information and vendor advisories.

Horde Project Horde 3.0

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.1

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.2

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.3

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.4 -RC 1

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.4 -RC 2

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.4

Debian horde3_3.0.4-4sarge3_all.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/h/horde3/horde3_3.0.4-4sa rge3_all.deb

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.6

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz

Horde Project Horde 3.0.7

Horde horde-3.0.8.tar.gz
ftp://ftp.horde.org/pub/horde/horde-3.0.8.tar.gz