CVE-2006-6422

Name of the Vulnerable Software and Affected Versions Agileco AgileBill versions 1.4.x Agileco AgileVoice versions 1.4.x

Description The issue arises from improper handling of certain proxy requests, allowing remote attackers to potentially disable the application. This can be achieved by entering invalid license data on a form, which may involve the modules/core/license.inc.php file.

Recommendations For Agileco AgileBill version 1.4.x, consider restricting access to the modules/core/license.inc.php file until a proper fix is available. For Agileco AgileVoice version 1.4.x, avoid using the form that accepts license data until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.