CVE-2012-0209

Horde Groupware - Code Injection

Title source: rule

Description

Horde 3.3.12, Horde Groupware 1.2.10, and Horde Groupware Webmail Edition 1.2.10, as distributed by FTP between November 2011 and February 2012, contains an externally introduced modification (Trojan Horse) in templates/javascript/open_calendar.js, which allows remote attackers to execute arbitrary PHP code.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/18492

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Eric Romang, jduck · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/horde_href_backdoor.rb

View Code ZIP pw:eip

References (5)

[Exploit, Patch, Vendor Advisory] http://dev.horde.org/h/jonah/stories/view.php?channel_id=1&id=155

[Exploit] http://eromang.zataz.com/2012/02/15/cve-2012-0209-horde-backdoor-analysis/

[Exploit, Patch] http://lists.horde.org/archives/announce/2012/000751.html

[Exploit] http://packetstormsecurity.org/files/109874/Horde-3.3.12-Backdoor-Arbitrary-PHP-Code-Execution.html

[Patch] https://bugzilla.redhat.com/show_bug.cgi?id=790877

Scores

EPSS 0.6477

EPSS Percentile 98.5%

Details

CWE

CWE-94

Status published

Products (2)

horde/groupware 1.2.10 (2 CPE variants)

horde/horde 3.3.12

Published Sep 25, 2012

Tracked Since Feb 18, 2026