CVE-2005-3344

NUCLEI

Horde 3.0.4 - Info Disclosure

Title source: llm

Description

The default installation of Horde 3.0.4 contains an administrative account with a blank password, which allows remote attackers to gain access.

Nuclei Templates (1)

Horde Groupware Unauthenticated Admin Access

CRITICALby pikpikcu

References (5)

[Patch, Vendor Advisory] http://www.debian.org/security/2005/dsa-884

[Various Sources] http://www.networkscanning.com/Horde-Default-Admin-Password-Vulnerability-VSS_20171.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/24117

[Patch] http://www.securityfocus.com/bid/15337/

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/24576

Scores

EPSS 0.1015

EPSS Percentile 93.1%

Details

Status published

Products (1)

horde/horde 3.0.4

Published Nov 16, 2005

Tracked Since Feb 18, 2026