CVE-2006-4617 Information

Description

Unrestricted file upload vulnerability in fileupload.html in vtiger CRM 4.2.4 and possibly earlier versions allows remote attackers to upload and execute arbitrary files with executable extensions in the /cashe/mails folder.

Reference

http://www.osvdb.org/28459 http://www.security-net.biz/adv/D3906a.txt