[horde] SECURITY: RCE and DOS vulnerabilities in Horde_Image
Michael J Rubinsky
mrubinsk at horde.org
Wed Jun 21 14:31:46 UTC 2017
Hello,
Two vulnerabilities were discovered in the Horde_Image library. This
library is used by any components of The Horde Project that
manipulates or displays images.
The first vulnerability (CVE-2017-9774) is a Remote Code Execution
vulnerability and is exploitable by a logged in user sending a
maliciously crafted GET request to the Horde server. This
vulnerability affects all versions of Horde_Image from 2.0.0 to 2.4.1.
The second vulnerability (CVE-2017-9773) is a DOS vulnerability. This
only affects Horde installations that do not have a configured image
handling backend, and thus use the "Null" image driver. It is
exploitable by a logged in user clicking on a maliciously crafted URL.
This vulnerability affects versions of Horde_Image above 2.3.0.
A fixed version of the Horde_Image (version 2.5.0) library has already
been released and everybody is advised to upgrade to Horde_Image 2.5.0
as soon as possible.
Thanks to Fariskhi Vidyan <farislab at gmail.com> for discovering and
reporting these vulnerabilities.
--
mike
The Horde Project
http://www.horde.org
https://www.facebook.com/hordeproject
https://www.twitter.com/hordeproject
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-keys
Size: 9272 bytes
Desc: PGP Public Key
URL: <https://lists.horde.org/archives/horde/attachments/20170621/8bd2c605/attachment-0002.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 821 bytes
Desc: PGP Digital Signature
URL: <https://lists.horde.org/archives/horde/attachments/20170621/8bd2c605/attachment-0003.bin>
More information about the horde
mailing list