Vulnerability Details : CVE-2006-3549
services/go.php in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 does not properly restrict its image proxy capability, which allows remote attackers to perform "Web tunneling" attacks and use the server as a proxy via (1) http, (2) https, and (3) ftp URL in the url parameter, which is requested from the server.
Products affected by CVE-2006-3549
- cpe:2.3:a:horde:horde_application_framework:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:horde:horde_application_framework:3.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-3549
1.26%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 84 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-3549
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2006-3549
-
http://moritz-naumann.com/adv/0011/hordemulti/0011.txt
Exploit
-
http://lists.horde.org/archives/announce/2006/000288.html
-
http://www.novell.com/linux/security/advisories/2006_19_sr.html
404 Page Not Found | SUSE
-
http://www.vupen.com/english/advisories/2006/2694
-
http://www.securityfocus.com/bid/18845
Exploit
-
http://securitytracker.com/id?1016442
Exploit
-
http://securityreason.com/securityalert/1229
-
http://www.securityfocus.com/archive/1/439255/100/0/threaded
-
http://www.debian.org/security/2007/dsa-1406
-
http://lists.horde.org/archives/announce/2006/000287.html
Patch
Jump to