Permissions, Privileges, and Access Controls in Vtiger CRM - CVE-2014-2268
Published: November 16, 2014 / Updated: August 9, 2020
Vulnerability identifier: #VU41103
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:A/U:Green
CVE-ID: CVE-2014-2268
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vendor: Vtiger
Affected software:
Vtiger CRM
Vtiger CRM
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
views/Index.php in the Install module in vTiger 6.0 before Security Patch 2 does not properly restrict access, which allows remote attackers to re-install the application via a request that sets the X-Requested-With HTTP header, as demonstrated by executing arbitrary PHP code via the db_name parameter.
How to mitigate CVE-2014-2268
Install update from vendor's website.
Sources
- http://vtiger-crm.2324883.n4.nabble.com/Vtigercrm-developers-IMP-forgot-password-and-re-installation-security-fix-tt9786.html
- http://www.exploit-db.com/exploits/32794
- http://www.securityfocus.com/bid/66757
- https://www.navixia.com/blog/entry/navixia-find-critical-vulnerabilities-in-vtiger-crm-cve-2014-2268-cve-2014-2269.html