JVN#95014590
Zimbra Collaboration Suite script execution vulnerability
Overview
Zimbra Collaboration Suite, a web collaboration tool from Zimbra, Inc., contains a vulnerability that could allow a remote attacker to execute an arbitrary script on the user's web browser.
Products Affected
- Zimbra Collaboration Suite 4.0.3
- Zimbra Collaboration Suite 4.5.6
Description
Zimbra Collaboration Suite is a web collaboration tool that provides calendar, address book, webmail, and other functions. Zimbra Collaboration Suite 4.0.3 and 4.5.6 contain a vulnerability that could allow a remote attacker to execute an arbitrary script on the user's web browser.
Impact
If a user opens a specially crafted image file attached to an email from a third party or contained in a document created by another Zimbra Collaboration Suite user, an arbitrary script could be executed on the user's web browser.
Solution
Update the Software
Update to the latest version according to the information provided by the vendor.
For more information, refer to the vendor's website.
Vendor Status
| Vendor | Link |
| Zimbra |
http://www.zimbra.com/jp/products/vulnerability.html |
|
ZCS 4.5.10 Has Been Released |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Analyzed on 2008.03.07
| Measures | Conditions | Severity |
|---|---|---|
| Access Required | Routed - can be attacked over the Internet using packets |
|
| Authentication | None - anonymous or no authentication (IP addresses do not count) |
|
| User Interaction Required | Simple - the user must be convinced to take a standard action that does not feel harmful to most users, such as click on a link or view a file |
|
| Exploit Complexity | Low - little to no expertise and/or luck required to exploit (cross-site scripting) |
|
Credit
Sen UENO of Tricorder Co.Ltd. reported this vulnerability to IPA.
JPCERT/CC coordinated with the vendors under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE | |
| JVN iPedia |
JVNDB-2008-000004 |