Sign-up

ID

VAR-200909-0479


CVE

CVE-2009-3249


TITLE

vtiger CRM Vulnerable to directory traversal

Trust: 0.8

sources: JVNDB: JVNDB-2009-006316

DESCRIPTION

Multiple directory traversal vulnerabilities in vtiger CRM 5.0.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the module parameter to graph.php; or the (2) module or (3) file parameter to include/Ajax/CommonAjax.php, reachable through modules/Campaigns/CampaignsAjax.php, modules/SalesOrder/SalesOrderAjax.php, modules/System/SystemAjax.php, modules/Products/ProductsAjax.php, modules/uploads/uploadsAjax.php, modules/Dashboard/DashboardAjax.php, modules/Potentials/PotentialsAjax.php, modules/Notes/NotesAjax.php, modules/Faq/FaqAjax.php, modules/Quotes/QuotesAjax.php, modules/Utilities/UtilitiesAjax.php, modules/Calendar/ActivityAjax.php, modules/Calendar/CalendarAjax.php, modules/PurchaseOrder/PurchaseOrderAjax.php, modules/HelpDesk/HelpDeskAjax.php, modules/Invoice/InvoiceAjax.php, modules/Accounts/AccountsAjax.php, modules/Reports/ReportsAjax.php, modules/Contacts/ContactsAjax.php, and modules/Portal/PortalAjax.php; and allow remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the step parameter in an Import action to the (4) Accounts, (5) Contacts, (6) HelpDesk, (7) Leads, (8) Potentials, (9) Products, or (10) Vendors module, reachable through index.php and related to modules/Import/index.php and multiple Import.php files. A remote attacker can use (1) module parameters to graph.php; or (2) modules or (3) include/Ajax/CommonAjax.php from modules/Campaigns/CampaignsAjax.php, modules/SalesOrder/SalesOrderAjax

Trust: 1.71

sources: NVD: CVE-2009-3249 // JVNDB: JVNDB-2009-006316 // VULHUB: VHN-40695

AFFECTED PRODUCTS

vendor:vtigermodel:crmscope:eqversion:5.0.4

Trust: 2.4

sources: JVNDB: JVNDB-2009-006316 // CNNVD: CNNVD-200909-361 // NVD: CVE-2009-3249

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2009-3249
value: HIGH

Trust: 1.0

NVD: CVE-2009-3249
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200909-361
value: HIGH

Trust: 0.6

VULHUB: VHN-40695
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2009-3249
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-40695
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-40695 // JVNDB: JVNDB-2009-006316 // CNNVD: CNNVD-200909-361 // NVD: CVE-2009-3249

PROBLEMTYPE DATA

problemtype:CWE-22

Trust: 1.9

sources: VULHUB: VHN-40695 // JVNDB: JVNDB-2009-006316 // NVD: CVE-2009-3249

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200909-361

TYPE

path traversal

Trust: 0.6

sources: CNNVD: CNNVD-200909-361

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2009-006316

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-40695

PATCH
title:vtiger CRMurl:https://www.vtiger.com/crm/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2009-006316

EXTERNAL IDS
db:NVDid:CVE-2009-3249
Trust: 2.5
db:EXPLOIT-DBid:9450
Trust: 1.7
db:BIDid:36062
Trust: 1.7
db:SECUNIAid:36309
Trust: 1.7
db:OSVDBid:57239
Trust: 1.7
db:VUPENid:ADV-2009-2319
Trust: 1.7
db:SREASONid:8118
Trust: 1.1
db:JVNDBid:JVNDB-2009-006316
Trust: 0.8
db:CNNVDid:CNNVD-200909-361
Trust: 0.7
db:MILW0RMid:9450
Trust: 0.6
db:BUGTRAQid:20090818 VTIGER CRM 5.0.4 MULTIPLE VULNERABILITIES
Trust: 0.6
db:EXPLOIT-DBid:16280
Trust: 0.1
db:SEEBUGid:SSVID-70802
Trust: 0.1
db:PACKETSTORMid:98990
Trust: 0.1
db:VULHUBid:VHN-40695
Trust: 0.1
sources:
            
            
            VULHUB: VHN-40695 // 
            
            
            
            JVNDB: JVNDB-2009-006316 // 
            
            
            
            CNNVD: CNNVD-200909-361 // 
            
            
            
            NVD: CVE-2009-3249

REFERENCES
url:http://www.securityfocus.com/bid/36062
Trust: 1.7
url:http://www.ush.it/2009/08/18/vtiger-crm-504-multiple-vulnerabilities/
Trust: 1.7
url:http://www.ush.it/team/ush/hack-vtigercrm_504/vtigercrm_504.txt
Trust: 1.7
url:http://www.osvdb.org/57239
Trust: 1.7
url:http://secunia.com/advisories/36309
Trust: 1.7
url:http://www.vupen.com/english/advisories/2009/2319
Trust: 1.7
url:http://marc.info/?l=bugtraq&m=125060676515670&w=2
Trust: 1.6
url:http://www.exploit-db.com/exploits/9450
Trust: 1.1
url:http://securityreason.com/securityalert/8118
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3249
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-3249
Trust: 0.8
url:http://www.milw0rm.com/exploits/9450
Trust: 0.6
url:http://marc.info/?l=bugtraq&m=125060676515670&w=2
Trust: 0.1
sources:
            
            
            VULHUB: VHN-40695 // 
            
            
            
            JVNDB: JVNDB-2009-006316 // 
            
            
            
            CNNVD: CNNVD-200909-361 // 
            
            
            
            NVD: CVE-2009-3249

CREDITS
Giovanni "evilaliv3" Pellerano, Antonio "s4tan" Parata, Francesco "ascii" Ongaro
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200909-361

SOURCES
db:VULHUBid:VHN-40695
db:JVNDBid:JVNDB-2009-006316
db:CNNVDid:CNNVD-200909-361
db:NVDid:CVE-2009-3249

LAST UPDATE DATE
2025-04-10T23:00:24.128000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-40695date:2017-09-19T00:00:00
db:JVNDBid:JVNDB-2009-006316date:2012-12-20T00:00:00
db:CNNVDid:CNNVD-200909-361date:2009-09-22T00:00:00
db:NVDid:CVE-2009-3249date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-40695date:2009-09-18T00:00:00
db:JVNDBid:JVNDB-2009-006316date:2012-12-20T00:00:00
db:CNNVDid:CNNVD-200909-361date:2009-09-18T00:00:00
db:NVDid:CVE-2009-3249date:2009-09-18T20:30:00.280