MidnightBSD

Advisories for zarafa

CVE-2014-0037 MEDIUM

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
zarafa zarafa 7.0.5
zarafa zarafa 6.20
zarafa zarafa 6.11
zarafa zarafa 6.20.11
zarafa zarafa 6.40.4
zarafa zarafa 7.1.2
zarafa zarafa 6.30.13
zarafa zarafa 6.20.5
zarafa zarafa 6.00
zarafa zarafa 7.0.7
zarafa zarafa 7.1.4
zarafa zarafa 6.40.2
zarafa zarafa 7.0.4
zarafa zarafa 7.0.10
zarafa zarafa 6.40.5
zarafa zarafa 5.11
zarafa zarafa 6.20.7
zarafa zarafa 6.40.17
zarafa zarafa 5.10
zarafa zarafa 7.0.8
zarafa zarafa 6.40.3
zarafa zarafa 6.30.8
zarafa zarafa 6.40.0
zarafa zarafa 6.40.16
zarafa zarafa 6.40.7
zarafa zarafa 5.22
zarafa zarafa 5.00
zarafa zarafa 6.30.5
zarafa zarafa 6.20.10
zarafa zarafa 6.40.8
zarafa zarafa 6.40.10
zarafa zarafa 7.0.3
zarafa zarafa 6.01
zarafa zarafa 7.0.11
zarafa zarafa 7.1.1
zarafa zarafa 6.40.9
zarafa zarafa 7.0.2
zarafa zarafa 6.30.0
zarafa zarafa 6.20.2
zarafa zarafa 7.0.1
zarafa zarafa 6.02
zarafa zarafa 5.20
zarafa zarafa 6.20.6
zarafa zarafa 7.0.12
zarafa zarafa 6.30.6
zarafa zarafa 7.1.3
zarafa zarafa 6.03
zarafa zarafa 6.30.9
zarafa zarafa 6.30.16
zarafa zarafa 6.30.3
zarafa zarafa 7.0
zarafa zarafa 6.30.7
zarafa zarafa 7.0.9
zarafa zarafa 6.10
zarafa zarafa 6.30.10
zarafa zarafa 6.30.11
zarafa zarafa 6.40.11
zarafa zarafa 6.40.13
zarafa zarafa 7.0.6
zarafa zarafa 7.1.0
zarafa zarafa 6.40.14
zarafa zarafa 5.02
zarafa zarafa 6.20.3
zarafa zarafa 6.20.12
zarafa zarafa 7.0.13
zarafa zarafa 6.40.15
zarafa zarafa 6.40.12
zarafa zarafa 6.40.6
zarafa zarafa 6.30.17
zarafa zarafa 5.01
zarafa zarafa 6.30.4
CVE-2014-0079 MEDIUM

The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 7.1.8, 6.20.0, and earlier, when using certain build conditions, allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the password."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
zarafa zarafa 6.10
zarafa zarafa 5.11
zarafa zarafa 6.02
zarafa zarafa 6.11
zarafa zarafa 5.10
zarafa zarafa 5.20
zarafa zarafa *
zarafa zarafa 5.02
zarafa zarafa 7.1.8
zarafa zarafa 5.22
zarafa zarafa 6.00
zarafa zarafa 5.00
zarafa zarafa 6.03
zarafa zarafa 6.01
zarafa zarafa 5.01
CVE-2014-0103 LOW

WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-310,

Products Affected

Vendor Product Version
zarafa zarafa 7.0.5
zarafa zarafa 7.0.2
fedoraproject fedora 19
zarafa zarafa 7.0.1
zarafa zarafa 7.1.2
fedoraproject fedora 20
zarafa zarafa 7.0.12
zarafa zarafa 7.1.3
zarafa zarafa 7.0.7
zarafa zarafa 7.1.4
zarafa zarafa 7.0
zarafa zarafa 7.0.4
zarafa zarafa 7.0.10
zarafa zarafa 7.0.9
zarafa webapp *
zarafa zarafa 7.0.8
zarafa zarafa 7.0.6
zarafa zarafa *
zarafa zarafa 7.1.0
zarafa zarafa 7.1.8
zarafa zarafa 7.0.13
zarafa zarafa 7.0.3
zarafa zarafa 7.0.11
zarafa zarafa 7.1.1
CVE-2014-5447 LOW

Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which allows local users to obtain sensitive information by reading the PHP session files. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-0103.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
zarafa webapp 1.6
zarafa zarafa 7.1.10
CVE-2014-5448 LOW

Zarafa 5.00 uses world-readable permissions for the files in the log directory, which allows local users to obtain sensitive information by reading the log files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
zarafa zarafa 5.00
CVE-2014-5449 LOW

Zarafa WebAccess 4.1 and WebApp uses world-readable permissions for the files in their tmp directory, which allows local users to obtain sensitive information by reading temporary session data.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
zarafa webapp -
zarafa webaccess 4.1
CVE-2014-5450 LOW

Zarafa Collaboration Platform 4.1 uses world-readable permissions for /etc/zarafa/license, which allows local users to obtain sensitive information by reading license files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
zarafa zarafa_collaboration_platform 4.1
CVE-2014-9465 MEDIUM

senddocument.php in Zarafa WebApp before 2.0 beta 3 and WebAccess in Zarafa Collaboration Platform (ZCP) 7.x before 7.1.12 beta 1 and 7.2.x before 7.2.0 beta 1 allows remote attackers to cause a denial of service (/tmp disk consumption) by uploading a large number of files.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
zarafa zarafa_collaboration_platform 7.0.0
zarafa zarafa_collaboration_platform 7.1.5
zarafa zarafa_collaboration_platform 7.1.11
zarafa zarafa_collaboration_platform 7.0.9
zarafa zarafa_collaboration_platform 7.0.1
zarafa zarafa_collaboration_platform 7.1.7
zarafa zarafa_collaboration_platform 7.0.8
fedoraproject fedora 20
zarafa zarafa_collaboration_platform 7.1.4
zarafa zarafa_collaboration_platform 7.1.9
zarafa zarafa_collaboration_platform 7.0.13
zarafa zarafa_collaboration_platform 7.1.0
zarafa zarafa_collaboration_platform 7.1.1
fedoraproject fedora 21
zarafa zarafa_collaboration_platform 7.1.2
zarafa zarafa_collaboration_platform 7.1.3
zarafa webapp *
zarafa zarafa_collaboration_platform 7.0.10
zarafa zarafa_collaboration_platform 7.0.7
zarafa zarafa_collaboration_platform 7.0.4
zarafa zarafa_collaboration_platform 7.0.11
zarafa zarafa_collaboration_platform 7.0.2
zarafa zarafa_collaboration_platform 7.0.3
zarafa zarafa_collaboration_platform 7.1.8
zarafa zarafa_collaboration_platform 7.0.12
zarafa zarafa_collaboration_platform 7.0.6
zarafa zarafa_collaboration_platform 7.1.10
zarafa zarafa_collaboration_platform 7.1.6
zarafa zarafa_collaboration_platform 7.0.5
CVE-2015-3436 MEDIUM

provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) before 7.1.13 and 7.2.x before 7.2.1 allows local users to write to arbitrary files via a symlink attack on /tmp/zarafa-upgrade-lock.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,

Products Affected

Vendor Product Version
zarafa zarafa_collaboration_platform *
zarafa zarafa_collaboration_platform 7.2.0
CVE-2015-6566 HIGH

zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-59,

Products Affected

Vendor Product Version
fedoraproject fedora 21
zarafa zarafa_collaboration_platform *
CVE-2019-7219 MEDIUM

Unauthenticated reflected cross-site scripting (XSS) exists in Zarafa Webapp 2.0.1.47791 and earlier. NOTE: this is a discontinued product. The issue was fixed in later Zarafa Webapp versions; however, some former Zarafa Webapp customers use the related Kopano product instead.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
zarafa webaccess 7.2.0-48204
CVE-2021-28994 MEDIUM

kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
kopano groupware_core *
zarafa zarafa *