Debian Security Advisory DSA 909-1 - Daniel Schreckling discovered that the MIME viewer in horde3, a web application suite, does not always sanitize its input leaving a possibility to force the return of malicious code that could be executed on the victim's machine.
2d43888a7680004331964aaed90cc0be49571ea724e23dcf3f8b74b8f0647243