PublicDate: 2008-08-13 01:41:00 UTC
Candidate: CVE-2008-3650
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3650
Description:
 Multiple unspecified vulnerabilities in Horde Groupware Webmail before
 Edition 1.1.1 (final) have unknown impact and attack vectors related to
 "unescaped output," possibly cross-site scripting (XSS), in the (1) object
 browser and (2) contact view.
Ubuntu-Description:
Notes:
 mdeslaur> this is a dupe of CVE-2008-3330, ignoring
 mdeslaur> turba2 code introduced in 2.2.0
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_turba2:
upstream_turba2: released (2.2.1)
dapper_turba2: ignored (reached end-of-life)
feisty_turba2: needs-triage (reached end-of-life)
gutsy_turba2: needs-triage (reached end-of-life)
hardy_turba2: not-affected
intrepid_turba2: not-affected
jaunty_turba2: not-affected
karmic_turba2: not-affected
devel_turba2: not-affected

Patches_horde3:
upstream_horde3: released (3.2.1+debian0-1)
dapper_horde3: ignored (reached end-of-life)
feisty_horde3: needs-triage (reached end-of-life)
gutsy_horde3: needs-triage (reached end-of-life)
hardy_horde3: ignored
intrepid_horde3: not-affected (3.2.1+debian0-1)
jaunty_horde3: not-affected (3.2.2+debian0-1)
karmic_horde3: not-affected (3.2.2+debian0-1)
devel_horde3: not-affected (3.2.2+debian0-1)