[pkg-horde] Bug#415116: horde3: arbitrary file deletion
vulnerability - local users
Lionel Elie Mamane
lionel at mamane.lu
Fri Mar 16 08:29:44 CET 2007
Package: horde3
Version: 3.0.4-1, 3.1-1
Severity: critical
Tags: security
Justification: security hole on mere installation of package
Changelog for new upstream release 3.1.4 says:
This (...) fixes an arbitrary file deletion vulnerability exploitable
by local system (not Horde) users on systems using the example cron
cleanup script.
Major changes compared to Horde 3.1.4-RC1 are:
* Correctly quote file names in cleanup script for temporary files.
Actually, sarge (3.0.4) may be vulnerable or not, I haven't checked
yet.
--
Lionel
More information about the pkg-horde-hackers
mailing list