[horde] SECURITY: RCE and DOS vulnerabilities in Horde_Image

Michael J Rubinsky mrubinsk at horde.org
Wed Jun 21 14:31:46 UTC 2017


Hello,

Two vulnerabilities were discovered in the Horde_Image library. This  
library is used by any components of The Horde Project that  
manipulates or displays images.

The first vulnerability (CVE-2017-9774) is a Remote Code Execution  
vulnerability and is exploitable by a logged in user sending a  
maliciously crafted GET request to the Horde server. This  
vulnerability affects all versions of Horde_Image from 2.0.0 to 2.4.1.

The second vulnerability (CVE-2017-9773) is a DOS vulnerability. This  
only affects Horde installations that do not have a configured image  
handling backend, and thus use the "Null" image driver. It is  
exploitable by a logged in user clicking on a maliciously crafted URL.  
This vulnerability affects versions of Horde_Image above 2.3.0.

A fixed version of the Horde_Image (version 2.5.0) library has already  
been released and everybody is advised to upgrade to Horde_Image 2.5.0  
as soon as possible.

Thanks to Fariskhi Vidyan <farislab at gmail.com> for discovering and  
reporting these vulnerabilities.




-- 
mike
The Horde Project
http://www.horde.org
https://www.facebook.com/hordeproject
https://www.twitter.com/hordeproject
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-keys
Size: 9272 bytes
Desc: PGP Public Key
URL: <https://lists.horde.org/archives/horde/attachments/20170621/8bd2c605/attachment-0002.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 821 bytes
Desc: PGP Digital Signature
URL: <https://lists.horde.org/archives/horde/attachments/20170621/8bd2c605/attachment-0003.bin>


More information about the horde mailing list