NVD

Id
81625  
Name
CVE-2017-5219  
Description
An issue was discovered in SageCRM 7.x before 7.3 SP3. The Component Manager functionality, provided by SageCRM, permits additional components to be added to the application to enhance provided functionality. This functionality allows a zip file to be uploaded, containing a valid .ecf component file, which will be extracted to the inf directory outside of the webroot. By creating a zip file containing an empty .ecf file, to pass file-validation checks, any other file provided in zip file will be extracted onto the filesystem. In this case, a web shell with the filename '..WWWRootCustomPagesaspshell.asp' was included within the zip file that, when extracted, traversed back out of the inf directory and into the SageCRM webroot. This permitted remote interaction with the underlying filesystem with the highest privilege level, SYSTEM.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-03-18  
Published
2017-02-02  
Modified Date
2017-03-14  
Seq
2017-5219  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
404712 81625 CVE-2017-3404 http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html  View
404713 81625 CVE-2017-3404 95531  View
404714 81625 CVE-2017-3404 http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html  View
404715 81625 CVE-2017-3404 95531  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65859 JVNDB-2017-002198 SageCRM の Component Manager 機能におけるコンポーネントの追加を許可する脆弱性 SageCRM の Component Manager 機能には、コンポーネントの追加を許可する脆弱性が存在します。 CVE-2017-5219 CVE-2017-5219 81625 10 9.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002198.html 2017-01-24 2017-04-03 View