Family: CGI abuses --> Category: infos
SugarSales Remote File Access Vulnerability Scan
Vulnerability Scan Summary
Checks for a file reading flaw in SugarSales
Detailed Explanation for this Vulnerability Test
The remote host is running SugarSales, a customer relationship suite written
in Java and PHP.
The remote version of this software is vulnerable to a vulnerability
which may allow a possible hacker to read arbitary files on the remote host with
the rights of the httpd user.
Solution : Upgrade to the newest version of this software
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.