AnsweredAssumed Answered

PHPMailer Security

Question asked by Mark Willert on Dec 27, 2016
Latest reply on Jan 10, 2017 by Chris Raffle

Hi,

any information on how this issue:

PwnScriptum 

PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10033-Vuln 

 

affects SugarCRM security-wise? Normally, there can be no mail functionality directly trggered by user not logged in, but this is too big too speculate. I will open a case with SugarCRM, but also like to gather opinions here. I will report back when anything official comes out.

 

Greets,

Mark

Outcomes