CVE-2006-1491

NameCVE-2006-1491
DescriptionEval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.
SourceCVE (at NVD; LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1033-1, DSA-1034-1
NVD severityhigh (attack range: remote)
Debian Bugs361967

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
horde2sourcesarge2.2.8-1sarge2highDSA-1034-1
horde3source(unstable)3.1.1-1high361967
horde3sourcesarge3.0.4-4sarge3highDSA-1033-1

Search for package or bug name: Reporting problems