QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1638

Published: Jun 22, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20100524 Re: [core] CVE Request for Horde and Squirrelmail

mailing-list

x_refsource_MLIST

[oss-security] 20100521 Re: [core] CVE Request for Horde and Squirrelmail

mailing-list

x_refsource_MLIST

http://conference.hitb.org/hitbsecconf2010dxb/materials/D1%20-%20Laurent%20Oudot%20-%20Improving%20the%20Stealthiness%20of%20Web%20Hacking.pdf#page=74

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.