| VID |
21900 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Sugar Suite software is vulnerable to multiple remote file include vulnerabilities which exist in versions 4.2.0a and earlier. Sugar Suite is a customer relationship management (CRM) software package written in PHP. Sugar Suite version 4.2.0a and earlier versions are vulnerable to multiple remote file include vulnerabilities, which are caused due to various scripts in the 'modules' directory incorrectly protecting against direct web access by checking the global variable 'sugarEntry'. If the register_globals is enabled, a remote attacker could send a specially-crafted URL request to execute arbitrary PHP code and operating system commands on the affected host.
* References:
http://www.sugarcrm.com/forums/showthread.php?t=12282
http://retrogod.altervista.org/sugar_suite_42_incl_xpl.html
http://www.securityfocus.com/archive/1/434009/30/0/threaded
http://milw0rm.com/exploits/1785
http://secunia.com/advisories/20072/
* Platforms Affected:
SugarCRM Inc, Sugar Suite version 4.2.0a and earlier versions
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Sugar Suite (4.2.0d or later), available from the SugarCRM Download Web site at http://www.sugarcrm.com/crm/download/sugar-suite.html
As a workaround, disable PHP's 'register_globals' setting or restrict web access to the "modules" directory. |
| Related URL |
CVE-2006-2460 (CVE) |
| Related URL |
17987 (SecurityFocus) |
| Related URL |
26451 (ISS) |
|
