Vulnerability CVE-2010-3693 - CERT Civis.Net

Vulnerability Name:

CVE-2010-3693 (CCN-62080)

Assigned:

2010-09-28

Published:

2010-09-28

Updated:

2019-06-18

Summary:

Cross-site scripting (XSS) vulnerability in Horde Dynamic IMP (DIMP) before 1.1.5, and Horde Groupware Webmail Edition before 1.2.7, allows remote attackers to inject arbitrary web script or HTML via vectors related to displaying mailbox names.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CONFIRM
Type: Patch
http://bugs.horde.org/ticket/9240

Source: MITRE
Type: CNA
CVE-2010-3693

Source: CONFIRM
Type: UNKNOWN
http://cvs.horde.org/diff.php/dimp/docs/CHANGES?rt=horde&r1=1.69.2.82&r2=1.69.2.87&ty=h

Source: CONFIRM
Type: Patch
http://git.horde.org/diff.php/groupware/docs/webmail/CHANGES?rt=horde&r1=1.35.2.11&r2=1.35.2.13&ty=h

Source: CONFIRM
Type: Patch
http://git.horde.org/diff.php/imp/lib/Views/ListMessages.php?rt=horde-git&r1=b496687e2e71f3ebaecdff5ee49561fbfc1c74cb&r2=48913cf3af81875d6e5c6f32e030c5913f22f25d

Source: CCN
Type: Horde Web Site
DIMP H3 (1.1.5) (final)

Source: MLIST
Type: Patch
[announce] 20100928 DIMP H3 (1.1.5) (final)

Source: MLIST
Type: Patch
[announce] 20100928 Horde Groupware Webmail Edition 1.2.7 (final)

Source: MLIST
Type: Exploit, Patch
[oss-security] 20100930 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php

Source: MLIST
Type: Patch
[oss-security] 20100930 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php

Source: MLIST
Type: Patch
[oss-security] 20101001 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php

Source: CCN
Type: SA41627
Horde IMP fm_id Cross-Site Scripting Vulnerability

Source: CCN
Type: SA41639
Horde DIMP Cross-Site Scripting Vulnerability

Source: SECUNIA
Type: Vendor Advisory
41639

Source: CCN
Type: DIMP Web site
DIMP

Source: OSVDB
Type: UNKNOWN
68267

Source: CCN
Type: OSVDB ID: 68267
Horde DIMP Mailbox Page Folder Label XSS

Source: VUPEN
Type: Vendor Advisory
ADV-2010-2522

Source: XF
Type: UNKNOWN
dynamicimp-mailbox-xss(62080)

Source: XF
Type: UNKNOWN
dynamicimp-mailbox-xss(62080)

Vulnerable Configuration:

Configuration 1:

cpe:/a:horde:groupware:1.0:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0:rc1:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0:rc2:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.1:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.3:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.4:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.5:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.6:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.7:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.0.8:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1:rc1:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1:rc2:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1:rc3:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1:rc4:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.2:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.3:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.4:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.5:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.1.6:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2:rc1:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.3:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.3:rc1:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.4:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:1.2.5:*:*:*:*:*:*:*

OR cpe:/a:horde:groupware:*:*:*:*:*:*:*:* (Version <= 1.2.6)

Configuration 2:

cpe:/a:horde:dynamic_imp:1.0:*:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.0:alpha:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.0:rc1:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.0:rc2:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.0:rc3:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1:*:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1:rc1:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1:rc2:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1.2:*:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:1.1.3:*:*:*:*:*:*:*

OR cpe:/a:horde:dynamic_imp:*:*:*:*:*:*:*:* (Version <= 1.1.4)

Configuration CCN 1:

cpe:/a:horde:dynamic_imp:1.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.precise:def:20103693000	V	CVE-2010-3693 on Ubuntu 12.04 LTS (precise) - medium.	2011-04-04