CVE-2006-1491

N/A Unknown

Published: March 29, 2006 Modified: April 16, 2026

Description

Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://cvs.horde.org/diff.php?f=horde%2Fservices%2Fhelp%2Findex.php&r1=2.85&r2=2.86

Source: cve@mitre.org

http://lists.horde.org/archives/announce/2006/000271.html

Source: cve@mitre.org

Patch

http://lists.horde.org/archives/announce/2006/000272.html

Source: cve@mitre.org

http://secunia.com/advisories/19485

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/19504

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/19528

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/19619

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/19692

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015841

Source: cve@mitre.org

Patch

http://www.attrition.org/pipermail/vim/2006-March/000671.html

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1033

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1034

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200604-02.xml

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2006_07_sr.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/17292

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2006/1154

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/25516

Source: cve@mitre.org

http://cvs.horde.org/diff.php?f=horde%2Fservices%2Fhelp%2Findex.php&r1=2.85&r2=2.86