CVE-2009-3236

The form library in Horde Application Framework 3.2 before 3.2.5 and 3.3 before 3.3.5; Groupware 1.1 before 1.1.6 and 1.2 before 1.2.4; and Groupware Webmail Edition 1.1 before 1.1.6 and 1.2 before 1.2.4; reuses temporary filenames during the upload process which allows remote attackers, with privileges to write to the address book, to overwrite arbitrary files and execute PHP code via crafted Horde_Form_Type_image form field elements.

Published: Sep 17, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-3236
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
horde / groupware	1.1	1.1.x
horde / application_framework	3.2.4	3.2.4.x
horde / groupware	1.2.2	1.2.2.x
horde / groupware	1.1.5	1.1.5.x
horde / application_framework	3.2.1	3.2.1.x
horde / application_framework	3.3.2	3.3.2.x
horde / groupware	1.2.1	1.2.1.x
horde / application_framework	3.2.2	3.2.2.x
horde / groupware	1.1.1	1.1.1.x
horde / application_framework	3.3.3	3.3.3.x
horde / groupware	1.1.3	1.1.3.x
horde / application_framework	3.3.4	3.3.4.x
horde / application_framework	3.2.3	3.2.3.x
horde / application_framework	3.3.1	3.3.1.x
horde / application_framework	3.2	3.2.x
horde / groupware	1.2-rc1	1.2-rc1.x
horde / groupware	1.2	1.2.x
horde / groupware	1.1.4	1.1.4.x
horde / application_framework	3.3	3.3.x
horde / groupware	1.1.2	1.1.2.x
horde / groupware	1.2.3	1.2.3.x
horde / groupware	1.1-rc1	1.1-rc1.x
horde / groupware	1.1-rc2	1.1-rc2.x
horde / groupware	1.1-rc3	1.1-rc3.x
horde / groupware	1.1-rc4	1.1-rc4.x
horde / groupware	1.2.3-rc1	1.2.3-rc1.x

Vulnerability Database

289,697

CVE-2009-3236