CVE-2006-3549
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
3
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
services/go.php in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 does not properly restrict its image proxy capability, which allows remote attackers to perform "Web tunneling" attacks and use the server as a proxy via (1) http, (2) https, and (3) ftp URL in the url parameter, which is requested from the server.
services/go.php en Horde Application Framework 3.0.0 hasta la 3.0.10 y 3.1.0 hasta la 3.1.1 no restringe de forma adecuada su capacidad de imagen de proxy, lo cual permite a atacantes remotos llevar a cabo ataques "Web tunneling" y utilizar el servidor como un proxy a través de la URL (1) http, (2) https, y (3) ftp en el parámetro URL, el cual es respondido desde el servidor.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-07-12 CVE Reserved
- 2006-07-13 CVE Published
- 2023-09-07 EPSS Updated
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (13)
| URL | Tag | Source |
|---|---|---|
| http://lists.horde.org/archives/announce/2006/000288.html | X_refsource_confirm | |
| http://secunia.com/advisories/20954 | Third Party Advisory | |
| http://secunia.com/advisories/21459 | Third Party Advisory | |
| http://secunia.com/advisories/27565 | Third Party Advisory | |
| http://securityreason.com/securityalert/1229 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/439255/100/0/threaded | Mailing List | |
| http://www.vupen.com/english/advisories/2006/2694 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| http://moritz-naumann.com/adv/0011/hordemulti/0011.txt | 2024-08-07 | |
| http://securitytracker.com/id?1016442 | 2024-08-07 | |
| http://www.securityfocus.com/bid/18845 | 2024-08-07 |
| URL | Date | SRC |
|---|---|---|
| http://lists.horde.org/archives/announce/2006/000287.html | 2018-10-18 |
| URL | Date | SRC |
|---|---|---|
| http://www.debian.org/security/2007/dsa-1406 | 2018-10-18 | |
| http://www.novell.com/linux/security/advisories/2006_19_sr.html | 2018-10-18 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.0 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.0" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.1 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.1" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.2 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.2" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.3 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.3" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.4 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.4" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.5 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.5" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.6 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.6" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.7 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.7" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.8 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.8" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.9 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.9" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.0.10 Search vendor "Horde" for product "Horde Application Framework" and version "3.0.10" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.1.0 Search vendor "Horde" for product "Horde Application Framework" and version "3.1.0" | - |
Affected
| ||||||
| Horde Search vendor "Horde" | Horde Application Framework Search vendor "Horde" for product "Horde Application Framework" | 3.1.1 Search vendor "Horde" for product "Horde Application Framework" and version "3.1.1" | - |
Affected
| ||||||