Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 203098
Alias:
Product:
Component:
Status: RESOLVED
Resolution: DUPLICATE of bug 205377
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Robert Buchholz <rbu@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 203098 depends on: Show dependency tree
Bug 203098 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-12-22 22:28 0000 
Secunia discovered the following vulnerability:

The HTML filter does not filter out <frame> and <frameset> HTML
elements. Additionally, the application allows users to perform certain
actions via HTTP requests without performing any validity checks to
verify the request. This can be exploited to (a) delete an arbitrary
number of e-mail messages by referencing their numeric IDs and (b) purge
deleted mails, when the victim opens a malicious HTML mail.

Successful exploitation requires that the victim opens the HTML part of
a malicious message.


There is no upstream patch AFAIK yet, so this bug is merely for tracking.
Disclosure date is 2008-01-02 10am CET. Please keep confidential until then.

------- Comment #1 From Sune Kloppenborg Jeppesen 2008-01-06 18:39:19 0000 ------- 
Removing webapps since an alias can't view restricted bugs and vapier is listed
as the maintainer.

------- Comment #2 From Robert Buchholz 2008-01-12 01:17:02 0000 ------- 

*** This bug has been marked as a duplicate of bug 205377 ***
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug