Required CVE Record Information
Description
The saveForwardAttachments procedure in the Compose Mail functionality in vtiger CRM 5.0.4 allows remote authenticated users to execute arbitrary code by composing an e-mail message with an attachment filename ending in (1) .php in installations based on certain Apache HTTP Server configurations, (2) .php. on Windows, or (3) .php/ on Linux, and then making a direct request to a certain pathname under storage/.
References 8 Total
- http://www.ush.it/2009/08/18/vtiger-crm-504-multiple-vulnerabilities/
- http://www.ush.it/team/ush/hack-vtigercrm_504/vtigercrm_504.txt
- exploit-db.com: 9450 exploit
- marc.info: 20090818 Vtiger CRM 5.0.4 Multiple Vulnerabilities mailing-list
- securityfocus.com: 36062 vdb-entry
- secunia.com: 36309 third-party-advisory
- osvdb.org: 57237 vdb-entry
- vupen.com: ADV-2009-2319 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 8 Total
- http://www.ush.it/2009/08/18/vtiger-crm-504-multiple-vulnerabilities/ x_transferred
- http://www.ush.it/team/ush/hack-vtigercrm_504/vtigercrm_504.txt x_transferred
- exploit-db.com: 9450 exploitx_transferred
- marc.info: 20090818 Vtiger CRM 5.0.4 Multiple Vulnerabilities mailing-listx_transferred
- securityfocus.com: 36062 vdb-entryx_transferred
- secunia.com: 36309 third-party-advisoryx_transferred
- osvdb.org: 57237 vdb-entryx_transferred
- vupen.com: ADV-2009-2319 vdb-entryx_transferred