Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1226

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1226
Last Modified 05 Sep 2008 04:26:00
Published 25 Dec 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1226

Summary

AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database.

Vulnerable Systems

Application

  • Adcycle 1.12

  • Adcycle 1.13

  • Adcycle 1.14

  • Adcycle 1.15

  • Adcycle 1.16

  • Adcycle 1.17


References

BID - 3741

BUGTRAQ - 20011225 GOBBLES CGI MARATHON #002

XF - adcycle-modify-sql-query(7762)


Last Updated: 27 May 2016 10:36:34