SonarSource security researchers recently reported the existence of a vulnerability in the Horde Webmail app, a widespread application used to view email within a browser. The vulnerability allows an attacker to run webmail commands that give access to the entire account via malicious OpenOffice documents, including all saved emails. A maliciously crafted email sent to an account with administrator privileges would lead to the compromise of the entire email server and all accounts, as well as further lateral movement and privilege escalation opportunities. SonarSource privately disclosed the vulnerability to Horde approximately six months ago and asserts there was no return communication, and now is making a public announcement in accordance with accepted disclosure practices. There is currently no patch available for this vulnerability.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in