|
Horde Exposure of Session ID
|
|
Secunia Advisory:
|
SA9530
|
|
|
Release Date:
|
2003-08-18
|
|
Last Update:
|
2003-09-10
|
|
Popularity:
|
6,590 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Exposure of sensitive information
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Horde Application Framework 1.x
Horde Application Framework 2.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
A vulnerability has been identified in Horde possibly allowing malicious people to gain unauthorised access to an account.
The problem is that Horde may reveal the session ID because it is part of the URL. The browser will supply it as part of the "HTTP_REFERER" value when a user clicks a link in an email. A malicious person with access to a web server could use this to gain unauthorised access to the users email account for as long as the session is valid.
This has been reported to affect version 2.2.3 and possibly earlier.
Solution:
Update to version 2.2.4:
ftp://ftp.horde.org/pub/horde/horde-2.2.4.tar.gz
http://ftp.horde.org/pub/horde/horde-2.2.4.tar.gz
Provided and/or discovered by:
pucciolab
Changelog:
2003-09-10: New version of Horde released. Updated "Solution" section.
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
