====================================================================

                             CERT-Renater

                 Note d'Information No. 2020/VULN118
_____________________________________________________________________

DATE                : 10/03/2020

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Horde_Form versions prior to
                                        2.0.20.

=====================================================================
https://lists.horde.org/archives/announce/2020/001288.html
_____________________________________________________________________

Hello,

A File Upload Arbitrary File Creation Vulnerability has been found in
Horde_Form. This vulnerability allows for specifying the name of the
temporary file that is created by Horde_Form when uploading a file
using Horde_Form's image support. While this allows a malicious user
to create an arbitrary file on the server with a known name, the file
creation is still restricted to the server's configured temporary
directory.

A fixed version of Horde_Form (2.0.20) has been released and everyone
is advised to upgrade.

This vulnerability was reported to us by Andrea Cardaci working with
Trend Micro Zero Day Initiative.



mike
The Horde Project
http://www.horde.org
https://www.facebook.com/hordeproject
https://www.twitter.com/hordeproject

=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================