Roundcube Webmail Security Updates Patches Multiple Critical Vulnerabilities
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A widely used open-source web-based IMAP email client, Roundcube Webmail, has released version 1.6.14, delivering critical security patches to fix multiple severe vulnerabilities in the 1.6.x branch.<\/p>\n
The release resolves a complex range of security issues, spanning from pre-authentication arbitrary file write risks to cross-site scripting (XSS) and server-side request forgery (SSRF).<\/a><\/p>\n System administrators are strongly urged to apply this update to protect their communication infrastructure from potential exploitation by threat actors.<\/p>\n The most severe vulnerability patched in this release involves a pre-authentication arbitrary-file-write flaw<\/a>. Discovered by security researcher y0us, this issue stems from unsafe deserialization in the Redis and Memcached session handlers<\/a>.<\/p>\n Because this flaw does not require an attacker to authenticate, it poses a significant risk for unauthenticated remote code execution on vulnerable web servers.<\/p>\n If exploited, attackers could gain complete control over the application environment. Additionally, the update patches an SSRF and information disclosure vulnerability.<\/p>\n Reported by Georgios Tsimpidas, this flaw allowed attackers to exploit stylesheet links to access hosts on the local network<\/a>.<\/p>\n This vulnerability could enable threat actors to map internal network architectures or extract sensitive data from hidden internal services that are normally shielded from the public internet.<\/p>\n Version 1.6.14 also resolves a critical logical bug in the account management mechanisms. Security researcher flydragon777 reported an issue where attackers could successfully change an account password without providing the old password.<\/p>\n This severely undermined account security and could lead to complete account takeovers if an active session was temporarily hijacked.<\/p>\n Furthermore, the Martila Security Research Team identified a combined IMAP injection and Cross-Site Request Forgery (CSRF) bypass vulnerability <\/a>located within the mail search functionality.<\/p>\n This flaw could allow malicious actors to manipulate backend mail server commands and perform unauthorized actions on behalf of a currently authenticated user.<\/p>\n The development team addressed several client-side vulnerabilities that could allow malicious payloads<\/a> to be executed or tracked within the victim\u2019s browser.<\/p>\n An XSS vulnerability present in the HTML attachment preview feature was successfully patched after being reported by aikido_security. Multiple methods used to bypass remote image blocking were also fixed.<\/p>\n A researcher known as nullcathedral reported bypasses utilizing various SVG animate attributes and crafted body background attributes.<\/p>\n Blocking remote images is a vital privacy feature that prevents email senders from using tracking pixels to confirm if an email was opened.<\/p>\n The same researcher also identified a flaw that allowed bypassing fixed-position mitigations via misuse of the CSS\u00a0important\u00a0rule, which has now been firmly resolved.<\/p>\n Beyond the extensive list of security fixes, version 1.6.14 includes a functional patch resolving issues with PostgreSQL database connections<\/a> utilizing IPv6 addresses.<\/p>\n The Roundcube development team considers this release highly stable. They recommend that administrators immediately update all production installations of Roundcube 1.6. x to secure their environments.<\/p>\n System administrators must securely back up all database and application data before initiating the upgrade process to prevent unexpected data loss.<\/p>\n The update packages, cryptographic signatures, and source code are currently available for download on the official Roundcube GitHub repository.<\/a><\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post Roundcube Webmail Security Updates Patches Multiple Critical Vulnerabilities<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nCritical Vulnerabilities Addressed<\/strong><\/h2>\n
Client-Side Security Bypasses<\/strong><\/h2>\n