Vulnerability Description
Absolute path traversal vulnerability in steps/mail/sendmail.inc in Roundcube Webmail before 0.7.3 and 0.8.x before 0.8.6 allows remote attackers to read arbitrary files via a full pathname in the _value parameter for the generic_message_footer setting in a save-perf action to index.php, as exploited in the wild in March 2013.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Roundcube | Webmail | <= 0.7.2 |
Related Weaknesses (CWE)
References
- http://habrahabr.ru/post/174423/
- http://lists.opensuse.org/opensuse-updates/2013-04/msg00080.html
- http://lists.roundcube.net/pipermail/dev/2013-March/022328.htmlVendor Advisory
- http://sourceforge.net/p/roundcubemail/news/2013/03/security-updates-086-and-073Patch
- http://www.openwall.com/lists/oss-security/2013/03/28/8
- http://habrahabr.ru/post/174423/
- http://lists.opensuse.org/opensuse-updates/2013-04/msg00080.html
- http://lists.roundcube.net/pipermail/dev/2013-March/022328.htmlVendor Advisory
- http://sourceforge.net/p/roundcubemail/news/2013/03/security-updates-086-and-073Patch
- http://www.openwall.com/lists/oss-security/2013/03/28/8
FAQ
What is CVE-2013-1904?
CVE-2013-1904 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Absolute path traversal vulnerability in steps/mail/sendmail.inc in Roundcube Webmail before 0.7.3 and 0.8.x before 0.8.6 allows remote attackers to read arbitrary files via a full pathname in the _va...
How severe is CVE-2013-1904?
CVE-2013-1904 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1904?
Check the references section above for vendor advisories and patch information. Affected products include: Roundcube Webmail.