Some security issues and a vulnerability have been reported in AutoFORM PDM Archive, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site request forgery attacks.

1) The application improperly verifies access to certain application functions via the web service and this can be exploited to e.g. access the application's database via an "initializeQueryDatabase2" SOAP request.

2) The application improperly verifies access to certain hidden administrative functions and this can be exploited to e.g. change the password of an administrative user via a call to the password change function.

The security issues #1 and #2 are reported in versions prior to 7.1 released on the 4th May 2012.

3) An error in the authentication mechanism of the application when allowing access to the JBoss jmx-console can be exploited to deploy an application via a remote JSP script using a valid remote deployment path.

This security issue is reported in versions prior to 7.0 released on the 9th November 2011.

4) The application allows users to perform certain actions via HTTP requests without performing proper validity checks to verify the requests. This can be exploited to e.g. conduct script insertion attacks when a logged-in user visits a specially crafted web page.

This vulnerability is reported in versions prior to 6.920 released on the 9th November 2011.

Solution
Update or upgrade to version 7.1 released on the 4th May 2012 (please contact the vendor for details).

Provided and/or discovered by
US-CERT credits David Elze of Daimler TSS GmbH.

Changelog
Further details available to Secunia VIM customers

Original Advisory
http://www.kb.cert.org/vuls/id/773035

Deep Links
Links available to Secunia VIM customers