Candidate: CVE-2011-0745
PublicDate: 2011-03-16 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0745
Description:
 SugarCRM before 6.1.3 does not properly handle reloads and direct requests
 for a warning page produced by a certain duplicate check, which allows
 remote authenticated users to discover (1) the names of customers via a
 ShowDuplicates action to the Accounts module, reachable through index.php;
 or (2) the names of contact persons via a ShowDuplicates action to the
 Contacts module, reachable through index.php.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_sugarcrm:
upstream_sugarcrm: released (6.1.3)
dapper_sugarcrm: needs-triage
hardy_sugarcrm: DNE
karmic_sugarcrm: DNE
lucid_sugarcrm: DNE
maverick_sugarcrm: DNE
natty_sugarcrm: DNE
devel_sugarcrm: DNE