Novell Home

CVE-2009-0932

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

CVE-2009-0932 at MITRE

Details

Directory traversal vulnerability in framework/Image/Image.php in Horde before 3.2.4 and 3.3.3 and Horde Groupware before 1.1.5 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Novell Bugzilla entry: 470086

SUSE Security Advisories:

Product(s) Fixed package version(s) References
openSUSE 10.3
openSUSE 11.0
  • horde >= 3.1.9-0.1
ZYPP Patch Nr: 6099
SAT Patch Nr: 657

Novell® Making IT Work As One

© 2009 Novell, Inc. All Rights Reserved.